CVE-2023-48552

Summary

CVE-2023-48552 is a stored Cross-Site Scripting (XSS) vulnerability affecting Adobe Experience Manager versions 6.5.18 and prior. An attacker with low privileges can exploit this flaw to inject malicious scripts into vulnerable form fields. These scripts may execute in a victim's browser when they view the affected page, potentially leading to data theft, unauthorized account access, or other malicious activities. This vulnerability poses a significant risk to organizations using the affected Adobe Experience Manager versions and should be addressed promptly by applying the available patch.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.