CVE-2023-22259

Name of the Vulnerable Software and Affected Versions Adobe Experience Manager versions 6.5.15.0 and earlier

Description The issue is related to a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. A low-privilege authenticated attacker could leverage this vulnerability to redirect users to malicious websites. Exploitation of this issue requires user interaction. The vulnerability allows a remote attacker to bypass security restrictions.

Recommendations For Adobe Experience Manager versions 6.5.15.0 and earlier, update to a version that contains a fix for this issue to prevent exploitation. As a temporary workaround, consider restricting access to sensitive areas of the application to minimize the risk of redirection to malicious websites. Avoid using links from untrusted sources within the application until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.