Your achievements

Level 1

0% to

Level 2

Tip /
Sign in

Sign in to Community

to gain points, level up, and earn exciting badges like the new
BedrockMission!

Learn more

View all

Sign in to view all badges

SOLVED

csrf Vulnerability remediation

akank_23
Level 2
Level 2

Hi  All,

 

WE have csrf vulnerabilty that needs to be remediated.

Please help in remediating this issue.

How we can fix this.

1 Accepted Solution
markus_bulla_adobe
Correct answer by
Employee
Employee

Hi @akank_23!

Handling potential security vulnerabilities (incl. CSRF) can be a very individual process.

If you are referring to a vulnerability in AEM (the product; not custom code), please check the latest security fixes / service packs and their according release notes. If you have indications that the vulnerability may not yet be addressed, please reach out to Adobes customer care to make them aware of it.

You can reach customer care through the Adobe Admin Console. Please refer to this article on how to access the support portal and how to create a ticket. Some information about properly qualifying your request can be found here.

Screenshot 2021-06-28 at 11.52.34.png

General recommendation before filing your ticket is:

  • Ensure that you have the latest service packs installed.
  • Ideally, the issue should be reproducible on a "vanilla" instance (means: a plain instance without any custom code). This will help customer care to reproduce the issue on their end.

 

 

 

If you are referring to a vulnerability in your projects code, there is some general advice as mentioned by @Ritesh_M. Without knowledge about the details, it is hard to give any advice beyond that.

 

Hope that helps!

View solution in original post

5 Replies
markus_bulla_adobe
Correct answer by
Employee
Employee

Hi @akank_23!

Handling potential security vulnerabilities (incl. CSRF) can be a very individual process.

If you are referring to a vulnerability in AEM (the product; not custom code), please check the latest security fixes / service packs and their according release notes. If you have indications that the vulnerability may not yet be addressed, please reach out to Adobes customer care to make them aware of it.

You can reach customer care through the Adobe Admin Console. Please refer to this article on how to access the support portal and how to create a ticket. Some information about properly qualifying your request can be found here.

Screenshot 2021-06-28 at 11.52.34.png

General recommendation before filing your ticket is:

  • Ensure that you have the latest service packs installed.
  • Ideally, the issue should be reproducible on a "vanilla" instance (means: a plain instance without any custom code). This will help customer care to reproduce the issue on their end.

 

 

 

If you are referring to a vulnerability in your projects code, there is some general advice as mentioned by @Ritesh_M. Without knowledge about the details, it is hard to give any advice beyond that.

 

Hope that helps!

View solution in original post

akank_23
Level 2
Level 2
Its about the product not the local site, how can i connect to adobe Customer care ???? @markus
markus_bulla_adobe
Employee
Employee

Hi @akank_23!

I have updated my answer with some links and instructions on how to contact client care. This can be done through Adobes Admin Console (menu "Support", button "Create case"). You will need the according access permission in Admin Console for your organization. If that's not the case, please reach out to the responsible person within your organization to either grant you the permissions or create the ticket on your behalf.

 

Hope that helps!

akank_23
Level 2
Level 2

@markus_bulla_adobe 

It is about the product,

how can i connect with Adobe Customer care ??