exploitDog

CVE-2023-53934

Опубликовано: 18 дек. 2025

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

A denial of service vulnerability in Kentico Xperience allows attackers to launch DoS attacks via specially crafted requests to the GetResource handler. Improper input validation enables remote attackers to potentially disrupt service availability through maliciously constructed requests.

Ссылки

https://devnet.kentico.com/download/hotfixes
Product
https://www.vulncheck.com/advisories/kentico-xperience-getresource-handler-denial-of-service
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:kentico:xperience:*:*:*:*:*:*:*:*

Версия до 12.0.98 (включая)

EPSS

Процентиль: 36%

0.00152

Низкий

7.5 High

CVSS3

Дефекты

CWE-97

Связанные уязвимости

GHSA-cxwj-5fh2-c47j

CVSS3: 7.5

github

около 2 месяцев назад

A denial of service vulnerability in Kentico Xperience allows attackers to launch DoS attacks via specially crafted requests to the GetResource handler. Improper input validation enables remote attackers to potentially disrupt service availability through maliciously constructed requests.

EPSS

Процентиль: 36%

0.00152

Низкий

7.5 High

CVSS3

Дефекты

CWE-97