CVE-2023-48503: 
Adobe Experience Manager vulnerability analysis and mitigation

CVE-2023-48503 is a stored Cross-Site Scripting (XSS) vulnerability that affects Adobe Experience Manager version 18 and earlier. The vulnerability was disclosed and assigned a CVSS score of 5.4, indicating a moderate severity level (Adobe Security).

The vulnerability is classified as a Cross-site Scripting (Stored XSS) vulnerability (CWE-79). It has been assigned a CVSS v3.1 base score of 5.4 with the following vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A, indicating network accessibility, low attack complexity, required low privileges, user interaction required, and changed scope with low impact on confidentiality and integrity (Adobe Security).

The vulnerability could potentially be exploited by a low-privileged attacker to inject malicious scripts into the application. When successful, this could lead to arbitrary code execution within the context of the affected application (Adobe Security).

Adobe has addressed this vulnerability in their security update. Users are advised to update to the latest version of Adobe Experience Manager to mitigate this security risk (Adobe Security).