Adobe Experience Manager up to 6.5 Reflected cross site scripting

entryeditHistoryDiffjsonxmlCTI

A vulnerability, which was classified as problematic, has been found in Adobe Experience Manager up to 6.5 (Content Management System). This issue affects some unknown functionality. Upgrading eliminates this vulnerability. A possible mitigation has been published even before and not after the disclosure of the vulnerability.

Field06/13/2020 07:49 AM06/13/2020 09:12 AM10/24/2020 02:27 PM
vendorAdobeAdobeAdobe
nameExperience ManagerExperience ManagerExperience Manager
version<=6.5<=6.5<=6.5
risk111
cvss2_vuldb_basescore4.34.34.3
cvss2_vuldb_tempscore3.73.73.7
cvss2_vuldb_avNNN
cvss2_vuldb_acMMM
cvss2_vuldb_auNNN
cvss2_vuldb_ciNNN
cvss2_vuldb_iiPPP
cvss2_vuldb_aiNNN
cvss3_meta_basescore5.25.25.2
cvss3_meta_tempscore4.94.94.9
cvss3_vuldb_basescore4.34.34.3
cvss3_vuldb_tempscore4.14.14.1
cvss3_vuldb_avNNN
cvss3_vuldb_acLLL
cvss3_vuldb_prNNN
cvss3_vuldb_uiRRR
cvss3_vuldb_sUUU
cvss3_vuldb_cNNN
cvss3_vuldb_iLLL
cvss3_vuldb_aNNN
titlewordReflectedReflectedReflected
date1591920000 (06/12/2020)1591920000 (06/12/2020)1591920000 (06/12/2020)
locationWebsiteWebsiteWebsite
typeSecurity BulletinSecurity BulletinSecurity Bulletin
urlhttps://helpx.adobe.com/security/products/experience-manager/apsb20-31.htmlhttps://helpx.adobe.com/security/products/experience-manager/apsb20-31.htmlhttps://helpx.adobe.com/security/products/experience-manager/apsb20-31.html
identifierAPSB20-31APSB20-31APSB20-31
price_0day$0-$5k$0-$5k$0-$5k
nameUpgradeUpgradeUpgrade
date1591660800 (06/09/2020)1591660800 (06/09/2020)1591660800 (06/09/2020)
cveCVE-2020-9651CVE-2020-9651CVE-2020-9651
seealso156678 156679 156680 156681 156682156678 156679 156680 156681 156682156678 156679 156680 156681 156682
cvss2_vuldb_eNDNDND
cvss2_vuldb_rlOFOFOF
cvss2_vuldb_rcCCC
cvss3_vuldb_eXXX
cvss3_vuldb_rlOOO
cvss3_vuldb_rcCCC
cvss3_nvd_basescore6.16.16.1
typeContent Management SystemContent Management System
cwe079 (cross site scripting)79 (cross site scripting)
cvss2_nvd_avNN
cvss2_nvd_acMM
cvss2_nvd_auNN
cvss2_nvd_ciNN
cvss2_nvd_iiPP
cvss2_nvd_aiNN
cvss3_nvd_avNN
cvss3_nvd_acLL
cvss3_nvd_prNN
cvss3_nvd_uiRR
cvss3_nvd_sCC
cvss3_nvd_cLL
cvss3_nvd_iLL
cvss3_nvd_aNN
cve_assigned15831072001583107200
cve_nvd_summaryAdobe Experience Manager versions 6.5 and earlier have a cross-site scripting (reflected) vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser.Adobe Experience Manager versions 6.5 and earlier have a cross-site scripting (reflected) vulnerability. Successful exploitation could lead to arbitrary javascript execution in the browser.
confirm_urlhttps://helpx.adobe.com/security/products/experience-manager/apsb20-31.html

Do you want to use VulDB in your project?

Use the official API to access entries easily!