PT-2024-2207 · Adobe · Experience Manager

Published

2024-03-12

Updated

2024-06-20

CVE-2024-26127

CVSS v2.0

4.0

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Adobe Experience Manager versions 6.5.20 and earlier

Description The issue is related to an Improper Input Validation vulnerability that could result in a security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and affect the integrity of the page. Exploitation of this issue requires user interaction. It may allow a remote attacker to bypass existing security restrictions.

Recommendations For Adobe Experience Manager versions 6.5.20 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

BDU:2024-02134

CVE-2024-26127

Affected Products

Experience Manager

PT-2024-2207 · Adobe · Experience Manager

CVE-2024-26127

Weakness Enumeration

Related Identifiers

Affected Products

References · 6