Description

Adobe Experience Manager (AEM) is a content management solution for building websites, mobile apps, and forms.

In some instances of AEM, due to lack of proper security controls and or misconfiguration, it is possible for remote unauthenticated users to enumerate local system files/folders that arent accessible publicly to unauthenticated users.

This issue originates from Servlets Post component 2.3.6 (part of Apache Sling), as used in Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0.

Remediation

Apply the latest security hot fixes for Adobe Experience Manager. These hot fixes resolve important vulnerabilities that could potentially lead to information disclosure.

References

Apache Sling Framework (Adobe AEM) 2.3.6 - Information Disclosure

Security updates available for Adobe Experience Manager

Related Vulnerabilities

Insecure Transportation Security Protocol Supported (SSLv3)

Same site scripting

Apache Tomcat version older than 7.0.32

GoCD information disclosure (CVE-2021-43287)

Apache Tomcat version older than 7.0.30

Severity

Medium

Classification

CVE-2016-0956 CWE-668 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Configuration