Security vulnerability scan in AEM

Hi All,- Can you please suggest a tool/method to find the security vulnerabilities in AEM.

Please note - We are running in AEM 6.5.7 in AWS cloud platform.

This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.

Best answer by Shubham_borole

Please look into using Checkmarx, Fortify and Sonarcube

Accepted solution

Community Advisor

Please look into using Checkmarx, Fortify and Sonarcube

Author

Community Advisor

Thanks for your response . Can we able to figure out the open vulnerabilities from AEM application.

Community Advisor

So far I have seen these security scan applications review the code and doesn't look like it will detect based on https://experienceleague.adobe.com/docs/experience-manager-dispatcher/using/getting-started/security-checklist.html or https://experienceleague.adobe.com/docs/experience-manager-64/administering/security/security-checklist.html?lang=en#complete-dispatcher-security-checklist
However, you should be able to work with the designated expert/contact for this on your team to see for any desired configurations they can add that will do these checks.

(Please let us know if you find anything or are able to configure any thing like that 🙂)

Sign up