An authentication bypass vulnerability in Kentico Xperience allows authentication bypass via the Staging Sync Server password handling of empty SHA1 usernames in digest authentication. Authentication bypass allows an attacker to control administrative objects.This issue affects Xperience through 13.0.172.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Tue, 23 Sep 2025 16:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-287

Tue, 23 Sep 2025 16:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-288

Mon, 24 Mar 2025 20:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Mon, 24 Mar 2025 18:30:00 +0000

Type Values Removed Values Added
Description An authentication bypass vulnerability in Kentico Xperience allows authentication bypass via the Staging Sync Server password handling of empty SHA1 usernames in digest authentication. Authentication bypass allows an attacker to control administrative objects.This issue affects Xperience through 13.0.172.
Title Kentico Xperience Staging Sync Server digest password authentication bypass
Weaknesses CWE-287
References
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2025-09-23T15:43:04.992Z

Reserved: 2025-03-24T16:39:11.689Z

Link: CVE-2025-2746

cve-icon Vulnrichment

Updated: 2025-03-24T19:27:16.832Z

cve-icon NVD

Status : Undergoing Analysis

Published: 2025-03-24T19:15:51.460

Modified: 2025-09-23T16:15:31.570

Link: CVE-2025-2746

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2025-07-12T15:26:07Z