CVE-2021-21083

Summary

AEM's Cloud Service offering, as well as versions 6.5.7.0 (and below), 6.4.8.3 (and below) and 6.3.3.8 (and below) are affected by an Improper Access Control vulnerability. An unauthenticated attacker could leverage this vulnerability to cause an application denial-of-service in the context of the current user.

Affected Software

VendorProductVersion RangeStatus
AdobeExperience Managerunspecified <= 6.3.3.8affected
AdobeExperience Managerunspecified <= 6.4.8.3affected
AdobeExperience Managerunspecified <= 6.5.7.0affected
AdobeExperience Managerunspecified <= AEM Cloud Serviceaffected

Weaknesses

  • CWE-284: Improper Access Control (CWE-284)

ADP Enrichment

CVE Program Container

Additional References

References