VDB

GCVE-110-NCSC-2025-241

GCVE-110-NCSC-2025-241
Advisory PublishedCVSS 10.0/10
Vulnetix · Advisory published August 6, 2025
Adobe Experience Manager versions 6.5.23 and earlier, along with Adobe Experience Manager Forms in JEE, have vulnerabilities allowing arbitrary code execution due to misconfigurations and unspecified issues.

Weaknesses (CWE)

CWE-611Improper Restriction of XML External Entity ReferenceCWE-863Incorrect Authorization

Risk Scores

CVSS 3.1
10.0/10
Critical · CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Affected Products

VendorProductVersionsPlatforms
Adobevers:unknown/*

References

advisory
advisory
advisory
advisory

Browse GCVE Records

72,337 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›