Unrated severityNVD Advisory· Published Aug 23, 2024· Updated Oct 7, 2024
Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)
CVE-2024-41878
Description
Adobe Experience Manager versions 6.5.19 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. This vulnerability could allow an attacker to inject and execute arbitrary JavaScript code within the context of the user's browser session. Exploitation of this issue requires user interaction, such as convincing a victim to click on a malicious link.
Affected products
2<=6.5.19+ 1 more
- (no CPE)range: <=6.5.19
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1- helpx.adobe.com/security/products/experience-manager/apsb24-05.htmlmitrevendor-advisory
News mentions
0No linked articles in our index yet.