Exposure of Adobe Experience Manager

CMS

219

exposure score

18,203

sites use

1

exploited

4

critical

Vexday analysis

Com 1.022 CVEs catalogadas, o Adobe Experience Manager acumula um histórico de vulnerabilidades considerável, ainda que sua taxa de exploração ativa esteja abaixo da média geral do catálogo CISA KEV. A falha mais comum é CWE-79 (Cross-Site Scripting), o que indica exposição persistente a vetores de injeção de script no lado do cliente — um padrão relevante em plataformas de gerenciamento de conteúdo com amplas superfícies de entrada. Atenção especial deve ser dada ao CVE-2025-54253, atualmente a vulnerabilidade mais crítica em exploração ativa, com índice EPSS de aproximadamente 0,90, sinalizando altíssima probabilidade de exploração real e exigindo priorização imediata de mitigação. O volume de 61 CVEs surgidas nos últimos 90 dias reforça que a superfície de ataque da plataforma segue em expansão ativa, demandando monitoramento contínuo e ciclos de patching ágeis.

CVEs

1,022 results

CVE-2023-48542MEDIUMAdobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)EPSS 0.6%CVE-2023-48468MEDIUMAdobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)EPSS 0.6%CVE-2023-48541MEDIUMAdobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)EPSS 0.6%CVE-2023-48540MEDIUMAdobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)EPSS 0.6%CVE-2023-48539MEDIUMAdobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)EPSS 0.6%CVE-2023-48538MEDIUMAdobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)EPSS 0.6%CVE-2023-48467MEDIUMAdobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)EPSS 0.6%CVE-2023-48466MEDIUMAdobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)EPSS 0.6%CVE-2023-48537MEDIUMAdobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)EPSS 0.6%CVE-2023-48465MEDIUMAdobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)EPSS 0.6%CVE-2023-48464MEDIUMAdobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)EPSS 0.6%CVE-2023-48463MEDIUMAdobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)EPSS 0.6%CVE-2023-48462MEDIUMAdobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)EPSS 0.6%CVE-2023-48461MEDIUMAdobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)EPSS 0.6%CVE-2023-48460MEDIUMAdobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)EPSS 0.6%CVE-2023-48459MEDIUMAdobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)EPSS 0.6%CVE-2023-48458MEDIUMAdobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)EPSS 0.6%CVE-2023-48523MEDIUMAdobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)EPSS 0.6%CVE-2023-48599MEDIUMAdobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)EPSS 0.6%CVE-2024-26066MEDIUMAdobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)EPSS 0.6%

← previouspage 14 / 52next →

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →