The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has officially added two critical Sitecore CMS vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The vulnerabilities, CVE-2019-9874 and CVE-2019-9875, both affect the Sitecore.Security.AntiCSRF module could allow attackers to execute arbitrary code on vulnerable systems. Critical Vulnerabilities Details and […]
The post CISA Adds Sitecore CMS Code Execution Vulnerability to List of Known Exploited Vulnerabilities appeared first on Cyber Security News.
This article has been indexed from Cyber Security News