Lucene search
K

CISA Flags Adobe AEM Flaw with Perfect 10.0 Score — Already Under Active Attack

🗓️ 16 Oct 2025 04:26:00Reported by The Hacker NewsType 
thn
 thn
🔗 thehackernews.com👁 7 Views

CISA flags critical AEM flaw CVE-2025-54253 with exploitation; unauthenticated OGNL execution.

Related
ReporterTitlePublishedViews
Family
GithubExploit
Exploit for Incorrect Authorization in Adobe Experience_Manager_Forms
1 Dec 202512:36
githubexploit
GithubExploit
Exploit for CVE-2025-54253
6 Aug 202519:28
githubexploit
GithubExploit
Exploit for Incorrect Authorization in Adobe Experience_Manager_Forms
10 Feb 202620:10
githubexploit
GithubExploit
Exploit for CVE-2025-54253
6 Aug 202510:37
githubexploit
GithubExploit
Exploit for CVE-2025-54253
17 Aug 202522:04
githubexploit
GithubExploit
Exploit for Incorrect Authorization in Adobe Experience_Manager_Forms
4 Nov 202509:29
githubexploit
Tenable Nessus
Adobe Experience Manager 6.0.0.0 < 6.5.24.0 Multiple Vulnerabilities (APSB25-82)
6 Aug 202500:00
nessus
BDU FSTEC
The vulnerability of the Adobe Experience Manager content and media data management system, related to configuration errors, allows a hacker to bypass existing security restrictions and execute arbitrary code.
6 Aug 202500:00
bdu_fstec
BDU FSTEC
The vulnerability of the corporate platform for creating, managing, and processing electronic forms, documents, and business processes within Adobe Experience Manager (AEM) Forms on JEE lies in the incorrect restrictions on XML links to external objects. This allows attackers to read arbitrary files.
8 Aug 202500:00
bdu_fstec
BDU FSTEC
The vulnerability of the SKYSEA Client View software for managing IT assets stems from deficiencies in the authentication process, allowing attackers to execute arbitrary code.
1 Nov 202500:00
bdu_fstec
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

16 Oct 2025 17:18Current
9.7High risk
Vulners AI Score9.7
CVSS 39.8
CVSS 210
CVSS 3.18.6 - 10
EPSS0.87515
SSVC
7