PT-2025-36776 · Adobe · Experience Manager
Published
2025-09-09
·
Updated
2025-10-31
·
CVE-2025-54247
CVSS v2.0
6.8
Medium
| Vector | AV:N/AC:L/Au:S/C:N/I:C/A:N |
Name of the Vulnerable Software and Affected Versions
Adobe Experience Manager versions 6.5.23.0 and earlier
Description
The issue concerns insufficient input validation in Adobe Experience Manager. Exploitation may allow a remote attacker to bypass security restrictions and disclose protected information. A low-privileged attacker could leverage this to bypass security measures and gain unauthorized read access.
Recommendations
Update Adobe Experience Manager to a version later than 6.5.23.0.
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Experience Manager