轉發 台灣電腦網路危機處理暨協調中心 TWCERTCC-200-202508-00000003
[內容說明]
Adobe針對Java企業版(JEE)的Adobe Experience Manager Forms發布重大資安漏洞(CVE-2025-54253,CVSS:10.0),此漏洞源於配置錯誤,攻擊者可利用此漏洞繞過安全機制並執行任意程式碼。
[影響平台]
Adobe Experience Manager(AEM)Forms on JEE 6.5.23.0(含)之前版本
[建議措施]
更新Adobe Experience Manager (AEM) Forms on JEE 至 6.5.0-0108版本
[參考資料]
1. https://www.twcert.org.tw/tw/cp-169-10315-0abd1-1.html
Forwarded by Taiwan Computer Network Crisis and Coordination Center (TWCERTCC-200-202508-00000003)
[Description]
Adobe has released a critical security vulnerability (CVE-2025-54253, CVSS: 10.0) for Adobe Experience Manager Forms on Java Enterprise Edition (JEE). This vulnerability is due to a configuration error and can be exploited by attackers to bypass security mechanisms and execute arbitrary code.
[Affected Platforms]
Adobe Experience Manager (AEM) Forms on JEE 6.5.23.0 and earlier
[Recommended Action]
Update Adobe Experience Manager (AEM) Forms on JEE to version 6.5.0-0108.
[References]
1. https://www.twcert.org.tw/tw/cp-169-10315-0abd1-1.html
【資安漏洞預警】Adobe Experience Manager (JEE) 存在重大資安漏洞(CVE-2025-54253)
[Security Vulnerability Alert] Adobe Experience Manager (JEE) has a major security vulnerability (CVE-2025-54253)
公告類別:行政公告
發佈日期:2025/08/11 至 2026/02/11
點閱數:59
相關附件
返回列表
快速連結
