Posting date: 2025/08/08

[Vulnerability Alert] Adobe Experience Manager (JEE) has a major security vulnerability (CVE-2025-54253)

  • Subject: [Vulnerability Alert] Adobe Experience Manager (JEE) has a major security vulnerability (CVE-2025-54253)
  • Details:
    • Forwarded from Taiwan Computer Emergency Response Team/Coordination Center TWCERTCC-200-202508-00000003
    • Adobe has issued an alert for a critical security vulnerability (CVE-2025-54253, CVSS: 10.0) in Adobe Experience Manager Forms on Java Enterprise Edition (JEE). This vulnerability stems from a misconfiguration, and an attacker could exploit it to bypass security mechanisms and execute arbitrary code.
  • Affected Platforms:
    • Adobe Experience Manager (AEM) Forms on JEE version 6.5.23.0 and earlier
  • Recommended Actions:
    • Update Adobe Experience Manager (AEM) Forms on JEE to version 6.5.0-0108
  • References:
    1. https://www.twcert.org.tw/tw/cp-169-10315-0abd1-1.html

Computer and Communications Center
Network Systems Group, Regards