Multiple Adobe Experience Manager Vulnerabilities

Severity

High

Analysis Summary

CVE-2024-26029 CVSS:7.5

Adobe Experience Manager could allow a remote attacker to bypass security restrictions, caused by improper access control. By persuading a victim to open a specially crafted document, a remote attacker could exploit this vulnerability to bypass access restrictions.

CVE-2024-36226 CVSS:7.5

Adobe Experience Manager could allow a remote attacker to bypass security restrictions, caused by improper input validation. By persuading a victim to open a specially crafted document, a remote attacker could exploit this vulnerability to bypass access restrictions.

Impact

Security Bypass

Indicators of Compromise

CVE

CVE-2024-26029
CVE-2024-36226

Affected Vendors

Adobe

Affected Products

Adobe Experience Manager 6.5.20

Remediation

Refer to Adobe Security Advisory for patch, upgrade or suggested workaround information.

Adobe Security Advisory

Smishing Triad Aims to Large-Scale Defraud Banking Customers in Pakistan – Active IOCs

Multiple IBM Db2 Vulnerabilities

Multiple Adobe Experience Manager Vulnerabilities

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan