Adobe Experience Manager Cloud Service vulnerabilities

170 known vulnerabilities affecting adobe/experience_manager_cloud_service.

Total CVEs
170
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM170

Vulnerabilities

Page 9 of 9
CVE-2022-42367MEDIUMCVSS 5.4fixed in 2022.10.02022-12-16
CVE-2022-42367 [MEDIUM] CWE-79 CVE-2022-42367: Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scriptin Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.
nvd
CVE-2022-44473MEDIUMCVSS 5.4fixed in 2022.10.02022-12-16
CVE-2022-44473 [MEDIUM] CWE-79 CVE-2022-44473: Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scriptin Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.
nvd
CVE-2022-42366MEDIUMCVSS 5.4fixed in 2022.10.02022-12-16
CVE-2022-42366 [MEDIUM] CWE-79 CVE-2022-42366: Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scriptin Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.
nvd
CVE-2022-42351MEDIUMCVSS 4.3fixed in 2022.10.02022-12-16
CVE-2022-42351 [MEDIUM] CWE-863 CVE-2022-42351: Adobe Experience Manager version 6.5.14 (and earlier) is affected by an Incorrect Authorization vuln Adobe Experience Manager version 6.5.14 (and earlier) is affected by an Incorrect Authorization vulnerability that could result in a security feature bypass. A low-privileged attacker could leverage this vulnerability to disclose low level confidentiality information. Exploitation of this issue does not require user interaction.
nvd
CVE-2022-44469MEDIUMCVSS 5.4fixed in 2022.10.02022-12-16
CVE-2022-44469 [MEDIUM] CWE-79 CVE-2022-44469: Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scriptin Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.
nvd
CVE-2022-44468MEDIUMCVSS 5.4fixed in 2022.10.02022-12-16
CVE-2022-44468 [MEDIUM] CWE-79 CVE-2022-44468: Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scriptin Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.
nvd
CVE-2022-35696MEDIUMCVSS 5.4fixed in 2022.10.02022-12-16
CVE-2022-35696 [MEDIUM] CWE-79 CVE-2022-35696: Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scriptin Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.
nvd
CVE-2022-42360MEDIUMCVSS 5.4fixed in 2022.10.02022-12-16
CVE-2022-42360 [MEDIUM] CWE-79 CVE-2022-42360: Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scriptin Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.
nvd
CVE-2022-35694MEDIUMCVSS 5.4fixed in 2022.10.02022-12-16
CVE-2022-35694 [MEDIUM] CWE-79 CVE-2022-35694: Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scriptin Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.
nvd
CVE-2022-44462MEDIUMCVSS 5.4fixed in 2022.10.02022-12-16
CVE-2022-44462 [MEDIUM] CWE-79 CVE-2022-44462: Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scriptin Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. If a low-privileged attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.
nvd
← Previous9 / 9