CVE-2018-12807

EUVD-2018-4760
Adobe Experience Manager versions 6.4, 6.3, 6.2, 6.1, and 6.0 have an input validation bypass vulnerability. Successful exploitation could lead to unauthorized information modification.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 89%
Affected Products (NVD)
VendorProductVersion
adobeexperience_manager
6.1.2.1 ≤
𝑥
≤ 6.1.2.16
adobeexperience_manager
6.2.1.1 ≤
𝑥
≤ 6.2.1.15
adobeexperience_manager
6.3.2.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/105068
http://www.securitytracker.com/id/1041470
https://helpx.adobe.com/security/products/experience-manager/apsb18-26.html
http://www.securityfocus.com/bid/105068
http://www.securitytracker.com/id/1041470
https://helpx.adobe.com/security/products/experience-manager/apsb18-26.html