Unrated severityNVD Advisory· Published Nov 17, 2023· Updated Nov 25, 2024
ZDI-CAN-21344: Adobe FrameMaker Publishing Server Authentication Bypass Vulnerability
CVE-2023-44324
Description
Adobe FrameMaker Publishing Server versions 2022 and earlier are affected by an Improper Authentication vulnerability that could result in a Security feature bypass. An unauthenticated attacker can abuse this vulnerability to access the API and leak default admin's password. Exploitation of this issue does not require user interaction.
Affected products
2<=2022+ 1 more
- (no CPE)range: <=2022
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1- helpx.adobe.com/security/products/framemaker-publishing-server/apsb23-58.htmlmitrevendor-advisory
News mentions
0No linked articles in our index yet.