Security updates available for Marketo | APSB20-60    
Bulletin ID Date Published Priority
ASPB20-60
October 20, 2020       2

Summary

Marketo has released an update for the Marketo Sales Insight package for Salesforce. This update addresses an important vulnerability.  Successful exploitation could lead to arbitrary JavaScript execution in the browser.

Affected Versions

Product Version
Marketo Sales Insight Salesforce package
1.4355 and earlier versions       

Solution

Adobe categorizes these updates with the following priority ratings and recommends users update their installation to the newest version.

Product Updated Version Priority Rating Release Notes
Marketo Sales Insight Salesforce package
1.4357 2 Install Guide

Vulnerability details

 Vulnerability Category  Vulnerability Impact Severity CVE numbers
Cross-site Scripting (stored)  JavaScript execution in the browser
Important
CVE-2020-24416

Acknowledgments

Adobe would like to thank Aditya Sharma and Shivam Kamboj Dattana of Root Fix for reporting this issue and for working with Adobe to help protect our customers.