VDB
CNVD-2025-21173
CNVD-2025-21173
PUBLISHED
CVSS 10 CRITICAL
Adobe Experience Manager是Adobe公司推出的内容管理解决方案,旨在帮助企业高效创建、管理和交付跨渠道内容,同时整合商业解决方案以提升客户体验。 Adobe Experience Manager存在代码执行漏洞,该漏洞源于配置不当,攻击者可利用该漏洞导致任意代码执行。
Risk Scores
CVSS v3.1
10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Adobe Experience Manager | 0 |
Timeline
- Aug 5, 2025 CVE Published
- Aug 5, 2025 PoC Published
- Aug 6, 2025 PoC Published
- Aug 6, 2025 PoC Published
- Aug 6, 2025 PoC Published
- Aug 6, 2025 PoC Published
- Aug 6, 2025 PoC Published
- Aug 6, 2025 PoC Published
- Aug 6, 2025 PoC Published
- Aug 7, 2025 PoC Published
- Aug 7, 2025 PoC Published
- Aug 8, 2025 PoC Published
References
- https://helpx.adobe.com/security/products/aem-forms/apsb25-82.html vendor-advisory
- https://slcyber.io/assetnote-security-research-center/struts-devmode-in-2025-critical-pre-auth-vulnerabilities-in-adobe-experience-manager-forms/ url
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-54253 url