← Retour aux CVEs

CVE-2025-2746

CRITICALCISA KEV

9.8

Description

An authentication bypass vulnerability in Kentico Xperience allows authentication bypass via the Staging Sync Server password handling of empty SHA1 usernames in digest authentication. Authentication bypass allows an attacker to control administrative objects.This issue affects Xperience through 13.0.172.

Details CVE

Score CVSS v3.19.8

SeveriteCRITICAL

Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vecteur d'attaqueNETWORK

ComplexiteLOW

Privileges requisNONE

Interaction utilisateurNONE

Publie3/24/2025

Derniere modification11/6/2025

Sourcekev

Observations honeypot0

CISA KEV

FournisseurKentico

ProduitXperience CMS

Nom vulnerabiliteKentico Xperience CMS Authentication Bypass Using an Alternate Path or Channel Vulnerability

Date ajout KEV2025-10-20

Date limite remediation2025-11-10

Utilise dans ransomwareUnknown

Produits affectes

kentico:xperience

Faiblesses (CWE)

CWE-288

References

https://devnet.kentico.com/download/hotfixes(disclosure@vulncheck.com)

https://github.com/watchtowrlabs/kentico-xperience13-AuthBypass-wt-2025-0011(disclosure@vulncheck.com)

https://labs.watchtowr.com/bypassing-authentication-like-its-the-90s-pre-auth-rce-chain-s-in-kentico-xperience-cms/(disclosure@vulncheck.com)

https://www.vulncheck.com/advisories/kentico-xperience-staging-sync-server-digest-password-authentication-bypass(disclosure@vulncheck.com)

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-2746(134c704f-9b21-4f2e-91b3-4a467353bcc0)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.