Expand my Community achievements bar.

SOLVED

csrf Vulnerability remediation

Avatar

Level 3

Hi  All,

 

WE have csrf vulnerabilty that needs to be remediated.

Please help in remediating this issue.

How we can fix this.

1 Accepted Solution

Avatar

Correct answer by
Employee Advisor

Hi @akank_23!

Handling potential security vulnerabilities (incl. CSRF) can be a very individual process.

If you are referring to a vulnerability in AEM (the product; not custom code), please check the latest security fixes / service packs and their according release notes. If you have indications that the vulnerability may not yet be addressed, please reach out to Adobes customer care to make them aware of it.

You can reach customer care through the Adobe Admin Console. Please refer to this article on how to access the support portal and how to create a ticket. Some information about properly qualifying your request can be found here.

Screenshot 2021-06-28 at 11.52.34.png

General recommendation before filing your ticket is:

  • Ensure that you have the latest service packs installed.
  • Ideally, the issue should be reproducible on a "vanilla" instance (means: a plain instance without any custom code). This will help customer care to reproduce the issue on their end.

 

 

 

If you are referring to a vulnerability in your projects code, there is some general advice as mentioned by @Ritesh_Mittal. Without knowledge about the details, it is hard to give any advice beyond that.

 

Hope that helps!

View solution in original post

5 Replies

Avatar

Correct answer by
Employee Advisor

Hi @akank_23!

Handling potential security vulnerabilities (incl. CSRF) can be a very individual process.

If you are referring to a vulnerability in AEM (the product; not custom code), please check the latest security fixes / service packs and their according release notes. If you have indications that the vulnerability may not yet be addressed, please reach out to Adobes customer care to make them aware of it.

You can reach customer care through the Adobe Admin Console. Please refer to this article on how to access the support portal and how to create a ticket. Some information about properly qualifying your request can be found here.

Screenshot 2021-06-28 at 11.52.34.png

General recommendation before filing your ticket is:

  • Ensure that you have the latest service packs installed.
  • Ideally, the issue should be reproducible on a "vanilla" instance (means: a plain instance without any custom code). This will help customer care to reproduce the issue on their end.

 

 

 

If you are referring to a vulnerability in your projects code, there is some general advice as mentioned by @Ritesh_Mittal. Without knowledge about the details, it is hard to give any advice beyond that.

 

Hope that helps!

Avatar

Level 3
Its about the product not the local site, how can i connect to adobe Customer care ???? @markus

Avatar

Employee Advisor

Hi @akank_23!

I have updated my answer with some links and instructions on how to contact client care. This can be done through Adobes Admin Console (menu "Support", button "Create case"). You will need the according access permission in Admin Console for your organization. If that's not the case, please reach out to the responsible person within your organization to either grant you the permissions or create the ticket on your behalf.

 

Hope that helps!

Avatar

Level 3

@markus_bulla_adobe 

It is about the product,

how can i connect with Adobe Customer care ??