Security News > 2021 > November > Sitecore XP RCE flaw patched last month now actively exploited

Sitecore XP RCE flaw patched last month now actively exploited
2021-11-08 16:56

The Australian Cyber Security Center is alerting web admins of the active exploitation of CVE-2021-42237, a remote code execution flaw in the Sitecore Experience Platform.

Sitecore XP is an enterprise-level content management system with data analytics used by well-known companies, including American Express, IKEA, Carnival Cruise Lines, L'Oréal, and Volvo.

On October 13th, Sitecore disclosed and released a patch for a pre-authentication remote code execution vulnerability tracked as CVE-2021-42237 affecting the Sitecore Experience Platform.

The vulnerable Sitecore XP component used in the attacks is Report.

The recommended solution is to upgrade to a secure version, ideally Sitecore XP 9.0 or higher.

For more details on mitigating the Sitecore XP CVE-2021-42237 vulnerability and how it affects your installed version, you can review Sitecore's security bulletin.


News URL

https://www.bleepingcomputer.com/news/security/sitecore-xp-rce-flaw-patched-last-month-now-actively-exploited/

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2021-11-05 CVE-2021-42237 Deserialization of Untrusted Data vulnerability in Sitecore Experience Platform
Sitecore XP 7.5 Initial Release to Sitecore XP 8.2 Update-7 is vulnerable to an insecure deserialization attack where it is possible to achieve remote command execution on the machine.
network
low complexity
sitecore CWE-502
critical
 9.8
9.8

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Sitecore 9 0 9 10 5 24