CVE-2024-26067

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Mar 18, 2024
CWE ID 79

Summary

CVE-2024-26067 is a stored Cross-Site Scripting (XSS) vulnerability affecting Adobe Experience Manager versions 6.5.19 and earlier. This vulnerability allows an attacker to inject malicious scripts into vulnerable form fields, which can then be executed in a victim's browser when they visit the page with the compromised field. The risk score for this vulnerability is 25, indicating a medium severity level. To remediate this issue, organizations using affected versions of Adobe Experience Manager should update to the latest version available from Adobe. This vulnerability poses a potential danger to organizations as it can be exploited by attackers to execute malicious code and potentially gain unauthorized access to sensitive information or perform other malicious activities.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share