web analytics

CISA Warns of Sitecore RCE Flaws; Active Exploits Hit Next.js and DrayTek Devices – Source:thehackernews.com

Rate this post

Source: thehackernews.com – Author: .

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two six-year-old security flaws impacting Sitecore CMS and Experience Platform (XP) to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
The vulnerabilities are listed below –

CVE-2019-9874 (CVSS score: 9.8) – A deserialization vulnerability in the Sitecore.Security.AntiCSRF

Original Post url: https://thehackernews.com/2025/03/cisa-flags-two-six-year-old-sitecore.html

Category & Tags: –

Views: 4

LinkedIn
Twitter
Facebook
WhatsApp
Email

advisor pick´S post