CVE-2021-43762

Summary

AEM's Cloud Service offering, as well as version 6.5.10.0 (and below) are affected by a dispatcher bypass vulnerability that could be abused to evade security controls. Sensitive areas of the web application may be exposed through exploitation of the vulnerability.

Affected Software

VendorProductVersion RangeStatus
AdobeExperience Managerunspecified <= 6.5.10.0affected
AdobeExperience Managerunspecified <= Noneaffected

Weaknesses

  • CWE-20: Improper Input Validation (CWE-20)

ADP Enrichment

CVE Program Container

Additional References

References