CVE-2023-48488

Summary

CVE-2023-48488 is a Cross-site Scripting (XSS) vulnerability affecting Adobe Experience Manager versions 6.5.18 and prior. This issue allows a low-privileged attacker to execute malicious JavaScript code within a victim's browser by tricking them into visiting a specially crafted URL referencing a vulnerable page. Successful exploitation could lead to information disclosure or unauthorized actions in the context of the victim's session. Users are advised to update their Adobe Experience Manager installations as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.