AEM Forms Cloud Service offering, as well as version 6.5.10.0 (and below) are affected by an XML External Entity (XXE) injection vulnerability that could be abused by an attacker to achieve RCE.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: adobe

Published: 2022-01-13T20:27:18.222810Z

Updated: 2024-09-16T22:10:35.865Z

Reserved: 2021-09-08T00:00:00

Link: CVE-2021-40722

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2022-01-13T21:15:07.897

Modified: 2022-01-19T15:13:22.820

Link: CVE-2021-40722

cve-icon Redhat

No data.