CVSS 3.1 Score 5.4 of 10 (medium)


Published Dec 15, 2023
Updated: Dec 18, 2023


CVE-2023-48500 is a reflected Cross-Site Scripting (XSS) vulnerability that affects Adobe Experience Manager versions 6.5.18 and earlier. This vulnerability can be exploited by low-privileged attackers who convince victims to visit a URL referencing a vulnerable page, allowing them to execute malicious JavaScript within the victim's browser. The vulnerability has a risk score of 25 and a base severity level of MEDIUM. The affected products include various versions of Adobe Experience Manager, RSDnYR, eNAlAl, QtqZiM, i-U_Zy, gXxIDh, ZkaO1A, t1qrWU, tz5NzV, fVLyh7, fVLyh8, fVLyh9, and others. Remediation for this vulnerability is not mentioned in the provided information.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-48500 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options