CVE-2020-3741Uncontrolled Resource Consumption in Adobe Experience Manager

CWE-400Uncontrolled Resource Consumption3 documents3 sources
Severity
7.5HIGHNVD
EPSS
2.2%
top 15.61%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Adobe Experience ManagerAdobe Experience Manager
Timeline
PublishedFeb 13
Latest updateMay 24

Description

Adobe Experience Manager versions 6.5, and 6.4 have an uncontrolled resource consumption vulnerability. Successful exploitation could lead to denial-of-service.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

NVDadobe/experience_manager6.4, 6.5+1
CVEListV5adobe/adobe_experience_manager6.5, and 6.4 versions

Patches

Patch: helpx.adobe.comPatch: helpx.adobe.com

🔴Vulnerability Details

1
GHSA
GHSA-9r48-45jv-qjj7: Adobe Experience Manager versions 62022-05-24

🕵️Threat Intelligence

1
Zscaler
Zscaler found 11 Adobe Security Vulnerabilities | 12-02-2020
CVE-2020-3741 — Uncontrolled Resource Consumption | cvebase