CVE-2024-26080

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Mar 18, 2024

CWE ID 79

Summary

CVE-2024-26105 is a newly disclosed Cross-Site Scripting (XSS) vulnerability that affects Adobe Experience Manager versions 6.5.19 and earlier. This issue allows attackers to execute malicious JavaScript code in a victim's browser by convincing them to visit a specially crafted URL referencing a vulnerable page. Successful exploitation could lead to unauthorized access to sensitive information or the ability to carry out further attacks against the victim. Adobe strongly advises users to update their software as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uhK-LX
https://www.cve.org/CVERecord?id=CVE-2024-26080
https://nvd.nist.gov/vuln/detail/CVE-2024-26080

Back to Vulnerability Database

CVE-2024-26080

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations