Unrated severityNVD Advisory· Published Dec 10, 2020· Updated Sep 17, 2024
Blind SSRF in Forms add-on for AEM
CVE-2020-24444
Description
AEM Forms SP6 add-on for AEM 6.5.6.0 and Forms add-on package for AEM 6.4 Service Pack 8 Cumulative Fix Pack 2 (6.4.8.2) have a blind Server-Side Request Forgery (SSRF) vulnerability. This vulnerability could be exploited by an unauthenticated attacker to gather information about internal systems that reside on the same network.
Affected products
2- Range: <= AEM 6.5.6.0, AEM 6.4.8.2
- Range: <= Forms SP6 add-on for AEM 6.5.6.0
Patches
Vulnerability mechanics
References
1- helpx.adobe.com/security/products/experience-manager/apsb20-72.htmlmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.