CVE-2025-47102

Name of the Vulnerable Software and Affected Versions Adobe Experience Manager versions 6.5.22 and earlier

Description The issue is a DOM-based Cross-Site Scripting (XSS) vulnerability that can be exploited by manipulating the DOM environment to execute malicious JavaScript within the context of the victim's browser. This requires user interaction, where a victim must visit a specially crafted web page.

Recommendations For Adobe Experience Manager versions 6.5.22 and earlier, update to a version later than 6.5.22 to resolve the issue. As a temporary workaround, consider restricting access to potentially vulnerable web pages until a patch is available.