Bulletin ID
Last updated on
Jul 8, 2025
Security updates available for Adobe Experience Manager Forms | APSB25-67
|
|
Date Published |
Priority |
|---|---|---|
|
APSB25-67 |
July 8, 2025 |
1 |
Summary
Adobe has released a security update for Adobe Experience Manager Forms on JEE. This update addresses a critical vulnerability that could lead to arbitrary code execution.
Adobe is not aware of any exploits in the wild for any of the issues addressed in these updates.
Affected Product Versions
| Product | Version | Platform |
|---|---|---|
| Adobe Experience Manager (AEM) Forms on JEE |
6.5.23.0 and earlier | All |
Solution
Adobe categorizes these updates with the following priority ratings and recommends users update their installation to the newest version:
Product |
Version |
Platform |
Priority |
Availability |
|---|---|---|---|---|
| Adobe Experience Manager (AEM) Forms on JEE | 6.5.0.0.20250527.0 | All |
1 |
Update Instructions |
Note
Please contact Adobe customer care for assistance with AEM versions 6.4, 6.3 and 6.2.
Vulnerability Details
|
Vulnerability Category |
Vulnerability Impact |
Severity |
CVSS base score |
CVE Number |
|
|---|---|---|---|---|---|
|
Deserialization of Untrusted Data (CWE-502) |
Arbitrary code execution |
Critical |
9.8 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
CVE-2025-49533 |
For more information, visit https://helpx.adobe.com/security.html, or email PSIRT@adobe.com.
