Vulnerability Description
Adobe Experience Manager versions 6.4, 6.3, 6.2, 6.1, and 6.0 have an input validation bypass vulnerability. Successful exploitation could lead to unauthorized information modification.
CVSS Score
5.3
MEDIUM
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Experience Manager | >= 6.1.2.1, <= 6.1.2.16 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/105068Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1041470Third Party AdvisoryVDB Entry
- https://helpx.adobe.com/security/products/experience-manager/apsb18-26.htmlVendor Advisory
- http://www.securityfocus.com/bid/105068Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1041470Third Party AdvisoryVDB Entry
- https://helpx.adobe.com/security/products/experience-manager/apsb18-26.htmlVendor Advisory
FAQ
What is CVE-2018-12807?
CVE-2018-12807 is a vulnerability with a CVSS score of 5.3 (MEDIUM). Adobe Experience Manager versions 6.4, 6.3, 6.2, 6.1, and 6.0 have an input validation bypass vulnerability. Successful exploitation could lead to unauthorized information modification.
How severe is CVE-2018-12807?
CVE-2018-12807 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-12807?
Check the references section above for vendor advisories and patch information. Affected products include: Adobe Experience Manager.