CNNVD-202512-3402 Information
Dec 18, 2025
cve
CNNVD ID
CNNVD-202512-3402
Related CVE
- CNNVD Published: 2025-12-18
Description (Chinese)
Kentico Xperience是Kentico公司的一个数字体验平台。 Kentico Xperience存在安全漏洞,该漏洞源于实时站点部件属性对话框可能泄露敏感系统对象,导致未经授权的信息访问。
Description (English)
Kentico Xperience is a digital experience platform for Kentico. There is a security loophole in Kentico Xperience, which stems from the fact that the real-time site widget properties dialogue box could leak sensitive system objects, leading to unauthorized access to information.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Kentico
Published
2025-12-18
Last Modified
2026-02-24
References
https://devnet.kentico.com/download/hotfixes https://www.vulncheck.com/advisories/kentico-xperience-user-widget-information-disclosure
Patch
https://devnet.kentico.com/download/hotfixes
Share on: