CVE-2024-43738

Name of the Vulnerable Software and Affected Versions Adobe Experience Manager versions 6.5.21 and earlier

Description The issue is related to a DOM-based Cross-Site Scripting (XSS) vulnerability in Adobe Experience Manager. This vulnerability could allow an attacker to execute arbitrary code in the context of the victim's browser. The problem occurs when a web application processes data from a malicious source and subsequently writes it to the web page without proper sanitization, allowing for the execution of unintended script code or the alteration of the intended user interface. User interaction is required, as the victim must visit a malicious page or view a maliciously crafted link.

Recommendations For Adobe Experience Manager versions 6.5.21 and earlier, update to a version that includes the fix for this vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.