Exposición de Adobe Experience Manager

CMS

219

score de exposición

18.203

sitios usan

1

en explotación

4

críticos

Análisis Vexday

Com 1.022 CVEs catalogadas, o Adobe Experience Manager acumula um histórico de vulnerabilidades considerável, ainda que sua taxa de exploração ativa esteja abaixo da média geral do catálogo CISA KEV. A falha mais comum é CWE-79 (Cross-Site Scripting), o que indica exposição persistente a vetores de injeção de script no lado do cliente — um padrão relevante em plataformas de gerenciamento de conteúdo com amplas superfícies de entrada. Atenção especial deve ser dada ao CVE-2025-54253, atualmente a vulnerabilidade mais crítica em exploração ativa, com índice EPSS de aproximadamente 0,90, sinalizando altíssima probabilidade de exploração real e exigindo priorização imediata de mitigação. O volume de 61 CVEs surgidas nos últimos 90 dias reforça que a superfície de ataque da plataforma segue em expansão ativa, demandando monitoramento contínuo e ciclos de patching ágeis.

CVEs

1022 resultados

CVE-2023-51461MEDIUMAdobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)EPSS 0.4%CVE-2023-51462MEDIUMAdobe Experience Manager | Cross-site Scripting (Reflected XSS) (CWE-79)EPSS 0.4%CVE-2023-51458MEDIUMAdobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)EPSS 0.4%CVE-2023-51463MEDIUMAdobe Experience Manager | Cross-site Scripting (Reflected XSS) (CWE-79)EPSS 0.4%CVE-2023-51457MEDIUMAdobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)EPSS 0.4%CVE-2023-51464MEDIUMAdobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)EPSS 0.4%CVE-2023-51459MEDIUMAdobe Experience Manager | Cross-site Scripting (Reflected XSS) (CWE-79)EPSS 0.4%CVE-2025-47071MEDIUMAdobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)EPSS 0.4%CVE-2025-47074MEDIUMAdobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)EPSS 0.4%CVE-2025-46840HIGHAdobe Experience Manager | Improper Authorization (CWE-285)EPSS 0.4%CVE-2024-49524MEDIUMAdobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)EPSS 0.4%CVE-2024-53964MEDIUMAdobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)EPSS 0.4%CVE-2024-53966MEDIUMAdobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)EPSS 0.4%CVE-2024-53962MEDIUMAdobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)EPSS 0.4%CVE-2024-45153MEDIUMAdobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)EPSS 0.4%CVE-2025-27205MEDIUMAdobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)EPSS 0.4%CVE-2024-36216MEDIUMAdobe Experience Manager | Cross-site Scripting (Reflected XSS) (CWE-79)EPSS 0.4%CVE-2023-38214MEDIUMAdobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)EPSS 0.4%CVE-2023-38215MEDIUMAdobe Experience Manager | Cross-site Scripting (Reflected XSS) (CWE-79)EPSS 0.4%CVE-2025-46898MEDIUMAdobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)EPSS 0.4%

← anteriorpágina 27 / 52siguiente →

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →