Lucene search
HistoryDec 15, 2023 - 11:15 a.m.
CVE-2023-48441
adobe experience manager
improper access control
cve-2023-48441
vulnerability
low-confidentiality
exploitation
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS
0.001
Percentile
28.6%
Adobe Experience Manager versions 6.5.18 and earlier are affected by an Improper Access Control vulnerability. An attacker could leverage this vulnerability to achieve a low-confidentiality impact within the application. Exploitation of this issue does not require user interaction.
Affected configurations
Node
adobeexperience_managerRange≤6.5.18.0
ORadobeexperience_managerMatch-cloud_service
| Vendor | Product | Version | CPE |
|---|---|---|---|
| adobe | experience_manager | * | cpe:2.3:a:adobe:experience_manager:*:*:*:*:*:*:*:* |
| adobe | experience_manager | - | cpe:2.3:a:adobe:experience_manager:-:*:*:*:cloud_service:*:*:* |
Related
cve
cve
CVE-2023-48441
2023-12-15 11:15:10
prion
prion
Improper access control
2023-12-15 11:15:00
cnvd
cnvd
cvelist
cvelist
nessus
nessus
adobe
adobe
APSB23-72 : Security update available for Adobe Experience Manager
2023-12-12 00:00:00
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS
0.001
Percentile
28.6%
Related for NVD:CVE-2023-48441