← back
CVE-2016-0957

CVE-2016-0957

EPSS 50.7%
Vexday Risk Score
30Low
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS EPSS 50.7%KEV nãoPoC Nuclei simMetasploit Patch
Lifecycle
10 Feb 2016Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
Dispatcher before 4.1.5 in Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0 does not properly implement a URL filter, which allows remote attackers to bypass dispatcher rules via unspecified vectors.
Affected products
n/a · n/a