Security alert graphic: Adobe AEM icon with red arrows showing code execution breach, linked to SKYSEA flaw; CISA shield and patch icons, timeline for November deadline, with "Secure Your Software" warning banner over a digital network.

CISA added CVE-2025-54253 (CVSS 10.0) to its Known Exploited Vulnerabilities list, confirming attacks on Adobe Experience Manager Forms on JEE (versions up to 6.5.23.0). The bug exposes an unauthenticated debug servlet, allowing arbitrary code execution via unvalidated inputs—fixed in version 6.5.0-0108 from August 2025. FCEB agencies must patch by November 5, 2025, as proof-of-concept exploits exist, risking full system takeovers.

Security alert graphic: Adobe AEM icon with red arrows showing code execution breach, linked to SKYSEA flaw; CISA shield and patch icons, timeline for November deadline, with "Secure Your Software" warning banner over a digital network.Security alert graphic: Adobe AEM icon with red arrows showing code execution breach, linked to SKYSEA flaw; CISA shield and patch icons, timeline for November deadline, with "Secure Your Software" warning banner over a digital network.

Adobe also addressed CVE-2025-54254 (CVSS 8.6), but focus is on the more severe issue. Separately, CISA flagged CVE-2016-7836 (CVSS 9.8) in SKYSEA Client View, enabling remote code execution via improper authentication, with active exploitation reported.

Security alert graphic: Adobe AEM icon with red arrows showing code execution breach, linked to SKYSEA flaw; CISA shield and patch icons, timeline for November deadline, with "Secure Your Software" warning banner over a digital network.Security alert graphic: Adobe AEM icon with red arrows showing code execution breach, linked to SKYSEA flaw; CISA shield and patch icons, timeline for November deadline, with "Secure Your Software" warning banner over a digital network.

Users should update software immediately, enable firewalls, and monitor for anomalies. This highlights the need for regular vulnerability scans and secure coding practices to defend against evolving threats like these.


NPAV offers a robust solution to combat cyber fraud. Protect yourself with our top-tier security product, Z Plus Security