| Max CVSS | 6.0 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-9743 | 4.3 |
AEM versions 6.5.5.0 (and below), 6.4.8.1 (and below), 6.3.3.8 (and below) and 6.2 SP1-CFP20 (and below) are affected by an HTML injection vulnerability in the content editor component that allows unauthenticated users to craft an HTTP request that i
|
14-09-2021 - 17:30 | 10-09-2020 - 17:15 | |
| CVE-2020-9733 | 5.0 |
An AEM java servlet in AEM versions 6.5.5.0 (and below) and 6.4.8.1 (and below) executes with the permissions of a high privileged service user. If exploited, this could lead to read-only access to sensitive data in an AEM repository.
|
14-09-2021 - 17:28 | 10-09-2020 - 17:15 | |
| CVE-2020-9737 | 3.5 |
AEM versions 6.5.5.0 (and below), 6.4.8.1 (and below), 6.3.3.8 (and below) and 6.2 SP1-CFP20 (and below) are affected by a stored XSS vulnerability that allows users with access to the Content Repository Development Environment to store malicious scr
|
17-09-2020 - 16:35 | 10-09-2020 - 17:15 | |
| CVE-2020-9742 | 3.5 |
AEM versions 6.5.5.0 (and below), 6.4.8.1 (and below) and 6.3.3.8 (and below) are affected by a stored XSS vulnerability that allows users with 'Author' privileges to store malicious scripts in fields associated with the Inbox calendar feature. These
|
16-09-2020 - 13:57 | 10-09-2020 - 17:15 | |
| CVE-2020-9736 | 3.5 |
AEM versions 6.5.5.0 (and below), 6.4.8.1 (and below), 6.3.3.8 (and below) and 6.2 SP1-CFP20 (and below) are affected by a stored XSS vulnerability that allows users with access to the Content Repository Development Environment to store malicious scr
|
14-09-2020 - 18:16 | 10-09-2020 - 17:15 | |
| CVE-2020-9738 | 3.5 |
AEM versions 6.5.5.0 (and below), 6.4.8.1 (and below), 6.3.3.8 (and below) and 6.2 SP1-CFP20 (and below) are affected by a stored XSS vulnerability that allows users with access to the Content Repository Development Environment to store malicious scr
|
14-09-2020 - 18:08 | 10-09-2020 - 17:15 | |
| CVE-2020-9740 | 3.5 |
AEM versions 6.5.5.0 (and below), 6.4.8.1 (and below), 6.3.3.8 (and below) and 6.2 SP1-CFP20 (and below) are affected by a stored XSS vulnerability that allows users with 'Author' privileges to store malicious scripts in fields associated with the De
|
14-09-2020 - 17:51 | 10-09-2020 - 17:15 | |
| CVE-2020-9741 | 3.5 |
The AEM forms add-on for versions 6.5.5.0 (and below) and 6.4.8.2 (and below) is affected by a stored XSS vulnerability that allows users with 'Author' privileges to store malicious scripts in fields associated with the Forms component. These scripts
|
14-09-2020 - 17:48 | 10-09-2020 - 17:15 | |
| CVE-2020-9735 | 3.5 |
AEM versions 6.5.5.0 (and below), 6.4.8.1 (and below), 6.3.3.8 (and below) and 6.2 SP1-CFP20 (and below) are affected by a stored XSS vulnerability that allows users with access to the Content Repository Development Environment to store malicious scr
|
14-09-2020 - 17:47 | 10-09-2020 - 17:15 | |
| CVE-2020-9734 | 3.5 |
The AEM Forms add-on for versions 6.5.5.0 (and below) and 6.4.8.1 (and below) is affected by a stored XSS vulnerability that allows users with 'Author' privileges to store malicious scripts in fields associated with the Forms component. These scripts
|
14-09-2020 - 17:36 | 10-09-2020 - 17:15 | |
| CVE-2020-9732 | 6.0 |
The AEM Forms add-on for versions 6.5.5.0 (and below) and 6.4.8.2 (and below) are affected by a stored XSS vulnerability that allows users with 'Author' privileges to store malicious scripts in fields associated with the Sites component. These script
|
11-09-2020 - 02:26 | 10-09-2020 - 17:15 |