Cross-Site Scripting Vulnerability in Adobe Campaign
CVE-2017-2969

6.1MEDIUM

Key Information:

Vendor: Adobe
Status: Adobe Campaign 16.4 Build 8724 And Earlier.
Vendor: CVE Published:; 15 February 2017

Summary

Adobe Campaign versions 16.4 Build 8724 and earlier are susceptible to a cross-site scripting vulnerability that could allow an attacker to inject malicious scripts into web pages viewed by users. This can lead to unauthorized access and the potential exposure of sensitive customer data. It is essential for users of affected versions to implement mitigation strategies and apply patches provided by the vendor to secure their applications.

Affected Version(s)

Adobe Campaign 16.4 Build 8724 and earlier. Adobe Campaign 16.4 Build 8724 and earlier.

References

https://helpx.adobe.com/security/products/campaign/apsb17...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/96200

vdb-entryx_refsource_BID

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Feb 15, 2017
Vulnerability Reserved
Dec 2, 2016