CVE-2017-3111

Опубликовано: 09 дек. 2017

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

An issue was discovered in Adobe Experience Manager 6.3, 6.2, 6.1, 6.0. Sensitive tokens are included in http GET requests under certain circumstances.

Ссылки

http://www.securityfocus.com/bid/101843
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1039800
Third Party Advisory
VDB Entry
https://helpx.adobe.com/security/products/experience-manager/apsb17-41.html
Vendor Advisory
http://www.securityfocus.com/bid/101843
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1039800
Third Party Advisory
VDB Entry
https://helpx.adobe.com/security/products/experience-manager/apsb17-41.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:adobe:experience_manager:6.1.0:*:*:*:*:*:*:*

cpe:2.3:a:adobe:experience_manager:6.2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 93%

0.09607

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-hj9w-rhc7-6m8g