Vulnerabilities > Adobe > Experience Manager > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-10 | CVE-2024-43716 | Unspecified vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.21 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. | 8.8 |
| 2024-12-10 | CVE-2024-43717 | Unspecified vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.21 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. | 8.8 |
| 2024-12-10 | CVE-2024-43729 | Unspecified vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.21 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. | 8.8 |
| 2024-12-10 | CVE-2024-43731 | Unspecified vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.21 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. | 8.3 |
| 2024-12-10 | CVE-2024-43755 | Unspecified vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.21 and earlier are affected by an Improper Input Validation vulnerability that could result in a security feature bypass. | 8.8 |
| 2024-12-10 | CVE-2024-52831 | Unspecified vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5.21 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. | 7.8 |
| 2021-08-24 | CVE-2021-28626 | Unspecified vulnerability in Adobe Experience Manager Adobe Experience Manager Cloud Service offering, as well as versions 6.5.8.0 (and below) is affected by an Improper Authorization vulnerability allowing users to create nodes under a location. | 7.5 |
| 2021-08-24 | CVE-2021-28627 | Server-Side Request Forgery (SSRF) vulnerability in Adobe Experience Manager Adobe Experience Manager Cloud Service offering, as well as versions 6.5.8.0 (and below) is affected by a Server-side Request Forgery. | 8.8 |
| 2020-09-10 | CVE-2020-9733 | Improper Privilege Management vulnerability in Adobe Experience Manager An AEM java servlet in AEM versions 6.5.5.0 (and below) and 6.4.8.1 (and below) executes with the permissions of a high privileged service user. | 7.5 |
| 2020-06-12 | CVE-2020-9645 | Server-Side Request Forgery (SSRF) vulnerability in Adobe Experience Manager Adobe Experience Manager versions 6.5 and earlier have a blind server-side request forgery (ssrf) vulnerability. | 7.5 |