Security vulnerability scan in AEM

Forum|Forum|4 years ago
September 3, 2021
1 reply
2671 views

Hi All,- Can you please suggest a tool/method to find the security vulnerabilities in AEM.

Please note - We are running in AEM 6.5.7 in AWS cloud platform.

This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.

Best answer by Shubham_borole

Please look into using Checkmarx, Fortify and Sonarcube

Shubham_borole

Accepted solution

Community Advisor

Please look into using Checkmarx, Fortify and Sonarcube

Raja-Karuppsamy

Author

Community Advisor

Thanks for your response . Can we able to figure out the open vulnerabilities from AEM application.

Like this security checklist : https://experienceleague.adobe.com/docs/experience-manager-dispatcher/using/getting-started/security-checklist.html

Kishore_Kumar_

Level 9

Hi @raja-karuppsamy ,

To ensure the blacklisted urls mentioned in dispatcher security checklist, try with curl command with your dispatcher urls, if it returns 200 you have to fix it. This curl command can also be automated through CI/CD via shell / any scripts and urls can be grouped into lists.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded