CISA Warns of Sitecore RCE Flaws; Active Exploits Hit Next.js and DrayTek Devices

By: The Hacker News Posted On: March 27, 2025 View: 6

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two six-year-old security flaws impacting Sitecore CMS and Experience Platform (XP) to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerabilities are listed below - CVE-2019-9874 (CVSS score: 9.8) - A deserialization vulnerability in the Sitecore.Security.AntiCSRF

Read this on The Hacker News

Latest News

Contact Us

[email protected]

About

Headlines Portal is your source for all news globally.

Latest News

Popular News

Featured News