Products
Adobe Experience Manager
- 6.5.20 and earlier
Source
psirt@adobe.com
Tags
CVE-2024-26126 details
Published : June 13, 2024, 8:15 a.m.
Last Modified : June 13, 2024, 6:35 p.m.
Last Modified : June 13, 2024, 6:35 p.m.
Description
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation vulnerability that could result in a security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and affect the integrity of the page. Exploitation of this issue requires user interaction.
CVSS Score
1 | 2 | 3.5 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|
CVSS Data
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
Base Score
3.5
Exploitability Score
Impact Score
Base Severity
LOW
Vector String : CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
References
URL | Source |
---|---|
https://helpx.adobe.com/security/products/experience-manager/apsb24-28.html | psirt@adobe.com |
This website uses the NVD API, but is not approved or certified by it.