CVE-2017-3108: Malicious File Upload
First published: Fri Aug 11 2017(Updated: )
Adobe Experience Manager 6.2 and earlier has a malicious file execution vulnerability.
Credit: psirt@adobe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Adobe Experience Manager | <=6.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-3108?
CVE-2017-3108 has been assigned a high severity rating due to the potential for remote exploitation.
How do I fix CVE-2017-3108?
To mitigate CVE-2017-3108, update Adobe Experience Manager to version 6.3 or later.
What types of attacks can be executed through CVE-2017-3108?
CVE-2017-3108 allows an attacker to execute malicious files on affected installations, potentially leading to unauthorized access.
Is CVE-2017-3108 present in versions newer than 6.2?
CVE-2017-3108 specifically affects Adobe Experience Manager version 6.2 and earlier, so later versions are not affected.
What impact does CVE-2017-3108 have on enterprise security?
CVE-2017-3108 can severely compromise enterprise security by allowing attackers to remotely execute arbitrary code.
- collector/nvd-index
- agent/type
- agent/remedy
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/softwarecombine
- agent/description
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- vendor/adobe
- canonical/adobe experience manager
- version/adobe experience manager/6.2