CVE-2025-46840

Name of the Vulnerable Software and Affected Versions Adobe Experience Manager versions 6.5.22 and earlier

Description The issue is related to an Improper Authorization flaw that could result in Privilege escalation. A low-privileged attacker could leverage this to bypass security measures and gain unauthorized access. Exploitation requires user interaction, and a successful attack can lead to session takeover, increasing the confidentiality and integrity impact.

Recommendations For Adobe Experience Manager versions 6.5.22 and earlier, update to a version later than 6.5.22 to resolve the issue. At the moment, there is no information about additional mitigation measures for this specific vulnerability.