CVE-2024-26063

EPSS 0.26%
Veröffentlicht 18.03.2024 18:15:14
Zuletzt bearbeitet 03.12.2024 14:43:38
Quelle psirt@adobe.com
CVE-Watchlists
Login
Unerledigt
Login

Adobe Experience Manager versions 6.5.19 and earlier are affected by an Information Exposure vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to gain unauthorized access to sensitive information, potentially bypassing security measures. Exploitation of this issue does not require user interaction.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Adobe ≫ Experience Manager SwEdition- Version < 6.5.20.0

Adobe ≫ Experience Manager SwEditionaem_cloud_service Version < 2024.3.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.26%	0.496

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
psirt@adobe.com	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

https://helpx.adobe.com/security/products/experience-manager/apsb24-05.html

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-26063

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-26063

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-26063

EUVD