CVE-2023-22260

Summary

Experience Manager versions 6.5.15.0 (and earlier) are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. A low-privilege authenticated attacker could leverage this vulnerability to redirect users to malicious websites. Exploitation of this issue requires user interaction.

Affected Software

VendorProductVersion RangeStatus
AdobeExperience Managerunspecified <= 6.5.15.0affected
AdobeExperience Managerunspecified <= Noneaffected

Weaknesses

  • CWE-601: URL Redirection to Untrusted Site ('Open Redirect') (CWE-601)

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References