Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
adobeAdobeAPSB24-05
HistoryMar 12, 2024 - 12:00 a.m.

APSB24-05 : Security update available for Adobe Experience Manager

2024-03-1200:00:00
helpx.adobe.com
32
adobe
experience manager
security update
arbitrary code execution
vulnerabilities
security feature bypass

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8.4

Confidence

Low

EPSS

0.015

Percentile

87.0%

JSON

Adobe has released updates for Adobe Experience Manager (AEM). These updates resolve vulnerabilities rated important and moderate. Successful exploitation of these vulnerabilities could result in arbitrary code execution and security feature bypass.

Affected configurations

Vulners
Node
adobeexperience_managerRange6.5.19.0aem_cloud_service
VendorProductVersionCPE
adobeexperience_manager*cpe:2.3:a:adobe:experience_manager:*:*:*:*:aem_cloud_service:*:*:*

Related

nessus 1
vulnrichment 44
nvd 48
cvelist 48
cve 47
cnvd 11
nessus
nessus
Adobe Experience Manager 6.5.0.0 < 6.5.20.0 Multiple Vulnerabilities (APSB24-05)
2024-03-12 00:00:00
vulnrichment
vulnrichment
CVE-2024-26101 AMS XSS - /libs/cq/searchpromote/components/colors/facetcontent.jsp (retest 1727950)
2024-03-18 17:54:34
CVE-2024-26094 AMS XSS - /libs/dam/gui/coral/components/admin/asyncjobs/jobdetails/metadataexportfield/clientlib/js/metadataexportjobactions.js (JS)
2024-03-18 17:54:21
CVE-2024-26044 DOM XSS in `/libs/dam/gui/coral/components/admin/unifiedrenditions/clientlibs/unifiedrenditions/js/fetchrenditions.js`
2024-03-18 17:54:25
nvd
nvd
CVE-2024-26064
2024-03-18 18:15:15
CVE-2024-26063
2024-03-18 18:15:14
CVE-2024-26124
2024-03-18 18:15:19
cvelist
cvelist
CVE-2024-26063 Vulnerability Report - Adobe Experience Manager Information Disclosure
2024-03-18 17:54:44
CVE-2024-26056 AMS XSS - /libs/fd/dashboard/tm/gui/components/startpoint/formview
2024-03-18 17:54:32
CVE-2024-26104 AMS XSS - /libs/cq/searchpromote/components/banners/banners.jsp (retest 1727957)
2024-03-18 17:54:37
cve
cve
CVE-2024-26102
2024-03-18 18:15:17
CVE-2024-26051
2024-03-18 18:15:13
CVE-2024-26065
2024-03-18 18:15:15
cnvd
cnvd
Adobe Experience Manager cross-site scripting vulnerability (CNVD-2024-14654)
2024-03-21 00:00:00
Adobe Experience Manager cross-site scripting vulnerability (CNVD-2024-15717)
2024-03-21 00:00:00
Adobe Experience Manager cross-site scripting vulnerability (CNVD-2024-15718)
2024-03-21 00:00:00

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8.4

Confidence

Low

EPSS

0.015

Percentile

87.0%

JSON
Related for APSB24-05
nessus1vulnrichment44nvd48cvelist48cve47cnvd11