[Vulnerability Alert] Adobe Experience Manager (JEE) has a major security vulnerability (CVE-2025-54253)

• Subject: [Vulnerability Alert] Adobe Experience Manager (JEE) has a major security vulnerability (CVE-2025-54253)
• Details:
  • Forwarded from Taiwan Computer Emergency Response Team/Coordination Center TWCERTCC-200-202508-00000003
  • Adobe has issued an alert for a critical security vulnerability (CVE-2025-54253, CVSS: 10.0) in Adobe Experience Manager Forms on Java Enterprise Edition (JEE). This vulnerability stems from a misconfiguration, and an attacker could exploit it to bypass security mechanisms and execute arbitrary code.
• Affected Platforms:
  • Adobe Experience Manager (AEM) Forms on JEE version 6.5.23.0 and earlier
• Recommended Actions:
  • Update Adobe Experience Manager (AEM) Forms on JEE to version 6.5.0-0108
• References:
  1. https://www.twcert.org.tw/tw/cp-169-10315-0abd1-1.html

Computer and Communications Center
Network Systems Group, Regards