{"cve":{"cve_id":"CVE-2021-21083","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.0198,"epss_percentile":0.77955,"epss_as_of":"2026-06-23","description":"AEM's Cloud Service offering, as well as versions 6.5.7.0 (and below), 6.4.8.3 (and below) and 6.3.3.8 (and below) are affected by an Improper Access Control vulnerability. An unauthenticated attacker could leverage this vulnerability to cause an application denial-of-service in the context of the current user.","published_at":"2021-06-28T13:41:54.807000Z","last_modified_at":null,"cvss_v3_score":7.5,"cvss_v3_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss_v3_severity":"HIGH","cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":["CWE-284"],"nvd_references":["https://helpx.adobe.com/security/products/experience-manager/apsb21-15.html"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:14:56.490594Z"},"effective_severity":"HIGH","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.1","metrics":[{"metric":"AV","name":"Attack Vector","value":"N","value_label":"Network"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"N","value_label":"None"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"S","name":"Scope","value":"U","value_label":"Unchanged"},{"metric":"C","name":"Confidentiality","value":"N","value_label":"None"},{"metric":"I","name":"Integrity","value":"N","value_label":"None"},{"metric":"A","name":"Availability","value":"H","value_label":"High"}]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"adobe","vendor_name":"Adobe","product_slug":"experience-manager","product_name":"Experience Manager","version_start":"unspecified","version_start_inclusive":true,"version_end":"6.3.3.8","version_end_inclusive":true,"cpe23_uri":"cve5:adobe:experience-manager:unspecified:6.3.3.8"},{"vendor_slug":"adobe","vendor_name":"Adobe","product_slug":"experience-manager","product_name":"Experience Manager","version_start":"unspecified","version_start_inclusive":true,"version_end":"6.4.8.3","version_end_inclusive":true,"cpe23_uri":"cve5:adobe:experience-manager:unspecified:6.4.8.3"},{"vendor_slug":"adobe","vendor_name":"Adobe","product_slug":"experience-manager","product_name":"Experience Manager","version_start":"unspecified","version_start_inclusive":true,"version_end":"6.5.7.0","version_end_inclusive":true,"cpe23_uri":"cve5:adobe:experience-manager:unspecified:6.5.7.0"},{"vendor_slug":"adobe","vendor_name":"Adobe","product_slug":"experience-manager","product_name":"Experience Manager","version_start":"unspecified","version_start_inclusive":true,"version_end":"AEM Cloud Service","version_end_inclusive":true,"cpe23_uri":"cve5:adobe:experience-manager:unspecified:AEM Cloud Service"}],"exploit_refs":[],"news":[],"references":[{"url":"https://helpx.adobe.com/security/products/experience-manager/apsb21-15.html","source_type":"VENDOR_ADVISORY","tags":["advisory"]}],"timeline":[{"type":"published","at":"2021-06-28T13:41:54.807000Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T17:05:05.516929Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:05:05.516929Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:05:05.516929Z","label":"CVSS score revised","source":"cvelistv5"}]}