Vulnerabilities > Adobe > Experience Manager Cloud Service > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-16 | CVE-2022-35696 | Cross-site Scripting vulnerability in Adobe Experience Manager Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. | 5.4 |
| 2022-12-16 | CVE-2022-42360 | Cross-site Scripting vulnerability in Adobe Experience Manager Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. | 5.4 |
| 2022-12-16 | CVE-2022-42366 | Cross-site Scripting vulnerability in Adobe Experience Manager Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. | 5.4 |
| 2022-12-16 | CVE-2022-42367 | Cross-site Scripting vulnerability in Adobe Experience Manager Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. | 5.4 |
| 2022-12-16 | CVE-2022-44462 | Cross-site Scripting vulnerability in Adobe Experience Manager Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. | 5.4 |
| 2022-12-16 | CVE-2022-44468 | Cross-site Scripting vulnerability in Adobe Experience Manager Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. | 5.4 |
| 2022-12-16 | CVE-2022-44469 | Cross-site Scripting vulnerability in Adobe Experience Manager Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. | 5.4 |
| 2022-12-16 | CVE-2022-44473 | Cross-site Scripting vulnerability in Adobe Experience Manager Adobe Experience Manager version 6.5.14 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. | 5.4 |
| 2022-01-13 | CVE-2021-43762 | Improper Input Validation vulnerability in Adobe Experience Manager AEM's Cloud Service offering, as well as version 6.5.10.0 (and below) are affected by a dispatcher bypass vulnerability that could be abused to evade security controls. | 6.4 |
| 2022-01-13 | CVE-2021-43765 | Cross-site Scripting vulnerability in Adobe Experience Manager AEM's Cloud Service offering, as well as version 6.5.10.0 (and below) are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. | 4.3 |