4 matches found
CVE-2025-2747
An authentication bypass vulnerability in Kentico Xperience allows authentication bypass via the Staging Sync Server component password handling for the server defined None type. Authentication bypass allows an attacker to control administrative objects.This issue affects Xperience through 13.0.1...
CVE-2025-2747
creationtimestamp| type| source ---|---|--- 2025-03-24 19:40:27+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3ll5j5ea2q522 2025-03-24 20:39:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ll5mhfxkvq2w 2025-03-24 20:48:56+00:00| seen|...
CVE-2025-2747
An authentication bypass vulnerability in Kentico Xperience allows authentication bypass via the Staging Sync Server component password handling for the server defined None type. Authentication bypass allows an attacker to control administrative objects.This issue affects Xperience through 13.0.1...
CVE-2025-2747
Kentico Xperience 13 CMS is affected by an authentication bypass in the Staging Sync Server component, due to password handling for the server-defined None type. This allows bypass of authentication and potential control of administrative objects, with impact stated up to version 13.0.178. A reme...