Stored Cross-Site Scripting Vulnerability in Adobe Experience Manager Forms
CVE-2019-7129
6.1MEDIUM
Summary
Adobe Experience Manager Forms versions 6.2, 6.3, and 6.4 exhibit a vulnerability that allows attackers to exploit stored cross-site scripting (XSS). When successfully exploited, this vulnerability can lead to sensitive information disclosure, posing risks to users' data integrity and confidentiality. It is crucial for administrators to address this flaw to mitigate potential risks associated with unauthorized access and data leakage.
Affected Version(s)
Adobe Experience Manager Forms Adobe Experience Manager Forms versions
References
CVSS V3.1
Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved