CVE security advisories and vulnerability history for xperience by kentico.
Last updated
kentico xperience has 50 published CVE records since 2018, of which 4 are in CISA's Known Exploited Vulnerabilities catalog and 8 have a known public exploit. The average CVSS base score across scored CVEs is 6.7.
This page aggregates every publicly disclosed vulnerability (CVE) affecting kentico xperience, with a severity breakdown, the affected and patched versions, the most common weakness types, and the full CVE list.
How the CVSS severity of kentico xperience's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.
13 additional CVEs have no CVSS severity score.
In CISA’s Known Exploited Vulnerabilities catalog
4
4 of kentico xperience's CVEs are confirmed exploited in the wild.
Public exploits
8
8 of kentico xperience's CVEs have a known public exploit available.
Browse every kentico xperience version named in a CVE, then pick one to see only the CVEs that affect it.
50 CVEs
Showing 30 of 50
The CWE weakness categories most often found in kentico xperience CVEs. Follow any weakness for its full explanation.
How many kentico xperience CVEs were published each year.
Browse vulnerabilities for other products by kentico.
Common questions about kentico xperience vulnerabilities.
kentico xperience has 50 published CVE records since 2018.
Yes — 4 of kentico xperience's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.
Yes — 8 of kentico xperience's CVEs have a known public exploit.
42 distinct kentico xperience versions are named across its CVEs. Use the version filter above to see the CVEs affecting a specific version.
kentico xperience's CVEs most often map to these CWE weakness types: CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-497 (Exposure of Sensitive System Information to an Unauthorized Control Sphere), CWE-434 (Unrestricted Upload of File with Dangerous Type), CWE-288 (Authentication Bypass Using an Alternate Path or Channel).
kentico xperience has 3 critical and 10 high-severity CVEs.
The average CVSS base score across kentico xperience's scored CVEs is 6.7.
Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.
Monitor new kentico xperience vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.
