CVE-2024-26056

Summary

CVE-2024-26056 is a vulnerability affecting Adobe Experience Manager versions 6.5.19 and earlier. It is a stored Cross-Site Scripting (XSS) vulnerability that allows an attacker to inject malicious scripts into vulnerable form fields. This can lead to the execution of malicious JavaScript in a victim's browser when they visit the page with the vulnerable field. The base severity of this vulnerability is rated as MEDIUM, with a base score of 5.4, and it requires low privileges and user interaction to exploit. The impact score is 2.7, indicating a potential danger to organizations using the affected Adobe product. Adobe has been made aware of this vulnerability through [email protected].

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.