PT-2019-5918 · Adobe · Experience Manager

Published

2019-08-13

Updated

2020-08-24

CVE-2019-7964

CVSS v3.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Adobe Experience Manager versions 6.4 through 6.5

Description The issue is related to an authentication bypass, which could lead to remote code execution if successfully exploited. It is associated with deficiencies in the authentication procedure, allowing a remote attacker to execute arbitrary code.

Recommendations For Adobe Experience Manager versions 6.4 and 6.5, update to a version that includes a fix for the authentication bypass issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

BDU:2021-03792

CVE-2019-7964

Affected Products

Experience Manager

PT-2019-5918 · Adobe · Experience Manager

CVE-2019-7964

Weakness Enumeration

Related Identifiers

Affected Products

References · 4