Описание
Adobe Experience Manager versions 6.5.23 and earlier are affected by a Misconfiguration vulnerability that could result in arbitrary code execution. An attacker could leverage this vulnerability to bypass security mechanisms and execute code. Exploitation of this issue does not require user interaction and scope is changed.
Ссылки
- Vendor Advisory
- ExploitThird Party Advisory
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
EPSS
10 Critical
CVSS3
Дефекты
Связанные уязвимости
Adobe Experience Manager versions 6.5.23 and earlier are affected by a Misconfiguration vulnerability that could result in arbitrary code execution. An attacker could leverage this vulnerability to bypass security mechanisms and execute code. Exploitation of this issue does not require user interaction and scope is changed.
Уязвимость системы управления контентом и медиа-данными Adobe Experience Manager, связанная с ошибками конфигурации, позволяющая нарушителю обойти существующие ограничения безопасности и выполнить произвольный код
EPSS
10 Critical
CVSS3