Adobe experience manager
This hub aggregates every CVE we track for Adobe experience manager, a product in the enterprise software space. Use it to gauge the current risk picture and drill into individual advisories.
1,174
CVEs tracked
16
Critical
35
High
1
In CISA KEV
Severity distribution
MEDIUM1,110HIGH35CRITICAL16LOW13
Monthly trend
3
13
0
1
2
92
1
6
4
1
0
228
11
11
7
3
0
117
0
0
34
6
0
62
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Adobe experience manager.
- CVE-CVE-2026-48268Уязвимость системы управления контентом и медиаданными Adobe Experience Manager, связанная с непринятием мер по защите структуры веб-страницы, позволяющая нарушителю выполнить произвольный JavaScript-код в контексте сессии авторизованного пользователя5.4
- CVE-CVE-2026-48258Уязвимость системы управления контентом и медиаданными Adobe Experience Manager, связанная с непринятием мер по защите структуры веб-страницы, позволяющая нарушителю выполнить произвольный JavaScript-код в контексте сессии авторизованного пользователя5.4
- CVE-2026-34693Adobe Experience Manager Forms JEE | Cross-site Scripting (Reflected XSS) (CWE-79)8.0
- CVE-2026-34694Adobe Experience Manager Forms JEE | Cross-site Scripting (Stored XSS) (CWE-79)5.9
- CVE-2026-34691Adobe Experience Manager Forms JEE | Cross-site Scripting (Stored XSS) (CWE-79)9.3
- CVE-2026-47980Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)5.4
- CVE-2026-47945Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)5.4
- CVE-2026-48280Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)5.4
- CVE-2026-47985Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)5.4
- CVE-2026-47935Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)5.4
- CVE-2026-47941Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)5.4
- CVE-2026-48251Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)5.4
- CVE-2026-48289Adobe Experience Manager | Improper Input Validation (CWE-20)3.5
- CVE-2026-48297Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)5.4
- CVE-2026-48256Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)5.4
Product normalization is registry-driven with AI assist and human review. How it works