CVE-2020-9733
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Summary
An AEM java servlet in AEM versions 6.5.5.0 (and below) and 6.4.8.1 (and below) executes with the permissions of a high privileged service user. If exploited, this could lead to read-only access to sensitive data in an AEM repository.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Adobe | Experience Manager | unspecified <= 6.5.5.0 | affected |
| Adobe | Experience Manager | unspecified <= 6.4.8.1 | affected |
| Adobe | Experience Manager | unspecified <= None | affected |
Weaknesses
- CWE-200: Information Exposure (CWE-200)
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.