← Volver a CVEs

CVE-2025-2746

CRITICALCISA KEV

9.8

Descripcion

An authentication bypass vulnerability in Kentico Xperience allows authentication bypass via the Staging Sync Server password handling of empty SHA1 usernames in digest authentication. Authentication bypass allows an attacker to control administrative objects.This issue affects Xperience through 13.0.172.

Detalles CVE

Puntuacion CVSS v3.19.8

SeveridadCRITICAL

Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vector de ataqueNETWORK

ComplejidadLOW

Privilegios requeridosNONE

Interaccion usuarioNONE

Publicado3/24/2025

Ultima modificacion11/6/2025

Fuentekev

Avistamientos honeypot0

CISA KEV

VendedorKentico

ProductoXperience CMS

Nombre vulnerabilidadKentico Xperience CMS Authentication Bypass Using an Alternate Path or Channel Vulnerability

Fecha inclusion KEV2025-10-20

Fecha limite remediacion2025-11-10

Uso en ransomwareUnknown

Productos afectados

kentico:xperience

Debilidades (CWE)

CWE-288

Referencias

https://devnet.kentico.com/download/hotfixes(disclosure@vulncheck.com)

https://github.com/watchtowrlabs/kentico-xperience13-AuthBypass-wt-2025-0011(disclosure@vulncheck.com)

https://labs.watchtowr.com/bypassing-authentication-like-its-the-90s-pre-auth-rce-chain-s-in-kentico-xperience-cms/(disclosure@vulncheck.com)

https://www.vulncheck.com/advisories/kentico-xperience-staging-sync-server-digest-password-authentication-bypass(disclosure@vulncheck.com)

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-2746(134c704f-9b21-4f2e-91b3-4a467353bcc0)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.