CVE-2021-21083
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
AEM's Cloud Service offering, as well as versions 6.5.7.0 (and below), 6.4.8.3 (and below) and 6.3.3.8 (and below) are affected by an Improper Access Control vulnerability. An unauthenticated attacker could leverage this vulnerability to cause an application denial-of-service in the context of the current user.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Adobe | Experience Manager | unspecified <= 6.3.3.8 | affected |
| Adobe | Experience Manager | unspecified <= 6.4.8.3 | affected |
| Adobe | Experience Manager | unspecified <= 6.5.7.0 | affected |
| Adobe | Experience Manager | unspecified <= AEM Cloud Service | affected |
Weaknesses
- CWE-284: Improper Access Control (CWE-284)
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.