CVE-2024-41849

MEDIUM Year: 2024
CVSS v3 Score
4.1
Medium
Weakness Type
CWE-20
View all →

Vulnerability Description

Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation vulnerability that could lead to a security feature bypass. An low-privileged attacker could leverage this vulnerability to slightly affect the integrity of the page. Exploitation of this issue requires user interaction and scope is changed.

Related Vulnerabilities

CVE-2016-8017

MEDIUM
CVSS:4.1(Medium)

Special element injection vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows authenticated remote attackers to read files on the webserver via a crafted user ...

CWE-202016

CVE-2020-3501

MEDIUM
CVSS:4.1(Medium)

Multiple vulnerabilities in the user interface of Cisco Webex Meetings Desktop App could allow an authenticated, remote attacker to obtain restricted information from other Webex users. These vulnerab...

CWE-202020

CVE-2020-3502

MEDIUM
CVSS:4.1(Medium)

Multiple vulnerabilities in the user interface of Cisco Webex Meetings Desktop App could allow an authenticated, remote attacker to obtain restricted information from other Webex users. These vulnerab...

CWE-202020

CVE-2021-1221

MEDIUM
CVSS:4.1(Medium)

A vulnerability in the user interface of Cisco Webex Meetings and Cisco Webex Meetings Server Software could allow an authenticated, remote attacker to inject a hyperlink into a meeting invitation ema...

CWE-202021

CVE-2021-29770

MEDIUM
CVSS:4.1(Medium)

IBM i2 Analyst's Notebook Premium (IBM i2 Analyze 4.3.0, 4.3.1, and 4.3.2) could allow an authenticated user to perform unauthorized actions due to hazardous input validation. IBM X-Force ID: 202771.

CWE-202021

CVE-2024-21304

MEDIUM
CVSS:4.1(Medium)

Trusted Compute Base Elevation of Privilege Vulnerability

CWE-202024