exploitDog

GHSA-g5r9-cgwv-wmpc

Опубликовано: 05 сент. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 9

Описание

Deserialization of Untrusted Data vulnerability in Sitecore Experience Manager (XM), Sitecore Experience Platform (XP) allows Code Injection.This issue affects Experience Manager (XM): through 9.0; Experience Platform (XP): through 9.0.

Deserialization of Untrusted Data vulnerability in Sitecore Experience Manager (XM), Sitecore Experience Platform (XP) allows Code Injection.This issue affects Experience Manager (XM): through 9.0; Experience Platform (XP): through 9.0.

Ссылки

EPSS

Процентиль: 96%

0.23378

Средний

9 Critical

CVSS3

CVE ID

Дефекты

CWE-502

Связанные уязвимости

CVE-2025-53690

CVSS3: 9

nvd

14 дней назад

Deserialization of Untrusted Data vulnerability in Sitecore Experience Manager (XM), Sitecore Experience Platform (XP) allows Code Injection.This issue affects Experience Manager (XM): through 9.0; Experience Platform (XP): through 9.0.

EPSS

Процентиль: 96%

0.23378

Средний

9 Critical

CVSS3

CVE ID

Дефекты

CWE-502