CVE-2017-3107Sensitive Information Exposure in Adobe Experience Manager

CWE-200Sensitive Information Exposure2 documents2 sources
Severity
7.5HIGHNVD
EPSS
9.6%
top 7.10%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Adobe Experience ManagerAdobe Systems Incorporated Experience Manager
Timeline
PublishedAug 11
Latest updateMay 17

Description

Adobe Experience Manager 6.3 and earlier has a misconfiguration vulnerability.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

CVEListV5adobe_systems_incorporated/experience_managerAEM 6.3 and earlier

Patches

Patch: helpx.adobe.comPatch: helpx.adobe.com

🔴Vulnerability Details

1
GHSA
GHSA-79wc-6gw3-pq5j: Adobe Experience Manager 62022-05-17
CVE-2017-3107 — Sensitive Information Exposure in Adobe | cvebase