DocumentationAEM 6.5User Guide

Mitigating CVE-2025-64775 (Apache Struts) vulnerabilty for AEM Forms on JEE

Last update: May 7, 2026
  • Applies to:
  • Experience Manager 6.5

CREATED FOR:

  • Admin

This document provides guidance on addressing the below vulnerabilty for AEM Forms on JEE:

  • CVE-2025-64775: Denial of Service vulnerability in Apache Struts, file leak in multipart request processing causes disk exhaustion.

Affected Versions

  • Adobe Experience Manager 6.5 Forms on JEE

Resolution

Download the latest version of AEM Forms 6.5.24.0 Service Pack to fix the issue.

recommendation-more-help
experience-manager-65-help-main-toc