CVE-2019-10068 - Kentico Xperience Deserialization of Untrusted Data Vulnerability

CVE ID:CVE-2019-10068

Project:Kentico

Product:Xperience

Date Added:2022-03-25Due Date:2022-04-15

Vulnerability Name

Kentico Xperience Deserialization of Untrusted Data Vulnerability

Kentico contains a failure to validate security headers. This deserialization can led to unauthenticated remote code execution.

Unknown

Apply updates per vendor instructions.

https://nvd.nist.gov/vuln/detail/CVE-2019-10068