claytonvantol.us

SESSION: secure TLS: 1.3 PID: 1337

clayton@site:~/news$ cat cve-2019-10068-kentico-xperience.log

CVE-2019-10068 — Kentico Xperience Deserialization of Untrusted Data Vulnerability

2022-03-25 • CISA Known Exploited Vulnerability

[event] Kentico contains a failure to validate security headers. This deserialization can led to unauthenticated remote code execution.

> AFFECTED SOFTWARE

Field	Value
Vendor	Kentico
Product	Xperience
CWE	CWE-502
CVE ID	CVE-2019-10068
Date Added	2022-03-25
Due Date	2022-04-15
Ransomware Campaign	Unknown

> MITIGATION

Apply updates per vendor instructions.

Due Date: 2022-04-15

> REFERENCES

[1] https://nvd.nist.gov/vuln/detail/CVE-2019-10068

← back to terminal

UPTIME: 1337d v2.0.1 privacy LAST LOGIN: 2026-05-30 20:36:13 UTC