Vulnerability Description
Adobe Campaign versions Build 8770 and earlier have an input validation bypass that could be exploited to read, write, or delete data from the Campaign database.
CVSS Score
9.1
CRITICAL
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Campaign | <= 6.11 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/97552Third Party AdvisoryVDB Entry
- https://helpx.adobe.com/security/products/campaign/apsb17-09.htmlVendor Advisory
- http://www.securityfocus.com/bid/97552Third Party AdvisoryVDB Entry
- https://helpx.adobe.com/security/products/campaign/apsb17-09.htmlVendor Advisory
FAQ
What is CVE-2017-2989?
CVE-2017-2989 is a vulnerability with a CVSS score of 9.1 (CRITICAL). Adobe Campaign versions Build 8770 and earlier have an input validation bypass that could be exploited to read, write, or delete data from the Campaign database.
How severe is CVE-2017-2989?
CVE-2017-2989 has been rated CRITICAL with a CVSS base score of 9.1/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2017-2989?
Check the references section above for vendor advisories and patch information. Affected products include: Adobe Campaign.