Adobe Experience Manager Security Vulnerabilities and Issues — Adobe Experience Manager CVE List

Lucene search

AdobeAdobe Experience Manager

11 matches found

CVE•added 2020/01/15 5:15 p.m.•160 views

CVE-2019-16469

Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have an expression language injection vulnerability. Successful exploitation could lead to sensitive information disclosure.

7.5CVSS7.2AI score0.58046EPSS

CVE•added 2019/10/25 4:15 p.m.•83 views

CVE-2019-8086

Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a xml external entity injection vulnerability. Successful exploitation could lead to sensitive information disclosure.

7.5CVSS7.1AI score0.45655EPSS

CVE•added 2019/10/25 4:15 p.m.•76 views

CVE-2019-8087

Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a xml external entity injection vulnerability. Successful exploitation could lead to sensitive information disclosure.

7.5CVSS7.1AI score0.00954EPSS

CVE•added 2020/02/13 4:15 p.m.•57 views

CVE-2020-3741

Adobe Experience Manager versions 6.5, and 6.4 have an uncontrolled resource consumption vulnerability. Successful exploitation could lead to denial-of-service.

7.5CVSS7.3AI score0.02184EPSS

CVE•added 2019/10/25 3:15 p.m.•48 views

CVE-2019-8081

Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have an authentication bypass vulnerability. Successful exploitation could lead to sensitive information disclosure.

7.5CVSS7.2AI score0.04562EPSS

CVE•added 2020/03/25 8:15 p.m.•48 views

CVE-2020-3769

Adobe Experience Manager versions 6.5 and earlier have a server-side request forgery (ssrf) vulnerability. Successful exploitation could lead to sensitive information disclosure.

7.5CVSS7AI score0.01088EPSS

CVE•added 2020/01/15 5:15 p.m.•42 views

CVE-2019-16468

Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have an user interface injection vulnerability. Successful exploitation could lead to sensitive information disclosure.

7.5CVSS7.1AI score0.04248EPSS

CVE•added 2020/06/12 2:15 p.m.•40 views

CVE-2020-9643

Adobe Experience Manager versions 6.5 and earlier have a server-side request forgery (ssrf) vulnerability. Successful exploitation could lead to sensitive information disclosure.

7.5CVSS7AI score0.01421EPSS

CVE•added 2019/10/25 3:15 p.m.•38 views

CVE-2019-8082

Adobe Experience Manager versions 6.4, 6.3 and 6.2 have a xml external entity injection vulnerability. Successful exploitation could lead to sensitive information disclosure.

7.5CVSS7.1AI score0.00954EPSS

CVE•added 2020/06/12 2:15 p.m.•38 views

CVE-2020-9645

Adobe Experience Manager versions 6.5 and earlier have a blind server-side request forgery (ssrf) vulnerability. Successful exploitation could lead to sensitive information disclosure.

7.5CVSS7AI score0.0105EPSS

CVE•added 2017/12/09 6:29 a.m.•36 views

CVE-2017-3111

An issue was discovered in Adobe Experience Manager 6.3, 6.2, 6.1, 6.0. Sensitive tokens are included in http GET requests under certain circumstances.

7.5CVSS7.4AI score0.09607EPSS