CVE-2024-26063
Adobe Experience Manager | Information Exposure (CWE-200)
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Adobe Experience Manager versions 6.5.19 and earlier are affected by an Information Exposure vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to gain unauthorized access to sensitive information, potentially bypassing security measures. Exploitation of this issue does not require user interaction.
Las versiones 6.5.19 y anteriores de Adobe Experience Manager se ven afectadas por una vulnerabilidad de exposición de información que podría provocar la omisión de una función de seguridad. Un atacante podría aprovechar esta vulnerabilidad para obtener acceso no autorizado a información confidencial, potencialmente eludiendo las medidas de seguridad. La explotación de este problema no requiere la interacción del usuario.
CVSS Scores
SSVC
- Decision:Attend
Timeline
- 2024-02-14 CVE Reserved
- 2024-03-18 CVE Published
- 2024-03-19 EPSS Updated
- 2024-10-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://helpx.adobe.com/security/products/experience-manager/apsb24-05.html | 2024-03-18 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Adobe Search vendor "Adobe" | Adobe Experience Manager Search vendor "Adobe" for product "Adobe Experience Manager" | <= 6.5.19 Search vendor "Adobe" for product "Adobe Experience Manager" and version " <= 6.5.19" | en |
Affected
| ||||||