← voltar
CVE-2021-47712

Kentico Xperience <= 12.0.102 URL Hashing Cryptography Vulnerability

CVSS 6.9 MEDIUMEPSS 0.2%CWE-327
A cryptography vulnerability in Kentico Xperience allows attackers to potentially manipulate URL hash values through existing hashing mechanisms. The hotfix introduces an additional security layer to prevent hash value reuse and potential exploitation.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
Produtos afetados
Kentico · Xperience

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://devnet.kentico.com/download/hotfixeshttps://www.vulncheck.com/advisories/kentico-xperience-url-hashing-cryptography-vulnerability