PT-2025-31949 · Adobe · Experience Manager
Published
2025-08-05
·
Updated
2025-08-06
·
CVE-2025-54253
CVSS v3.1
10
| Vector | AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H |
Fix
RCE
Weakness Enumeration
Related Identifiers
Affected Products
Experience Manager
Published
2025-08-05
·
Updated
2025-08-06
·
CVE-2025-54253
10
Critical
| Base vector | Vector | AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
Adobe Experience Manager versions 6.5.23 and earlier
Description:
Adobe Experience Manager versions 6.5.23 and earlier are affected by a misconfiguration vulnerability that could result in arbitrary code execution. An attacker could leverage this vulnerability to bypass security mechanisms and execute code without user interaction. Public Proofs of Concept (PoCs) are available. Approximately 5,200 potentially affected devices have been identified.
Recommendations:
Update Adobe Experience Manager to a version later than 6.5.23.
Fix
RCE