CVE-2025-34510

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-34510
Sitecore Experience Manager (XM), Experience Platform (XP), and Experience Commerce (XC) versions 9.0 through 9.3 and 10.0 through 10.4 are affected by a Zip Slip vulnerability. A remote, authenticated attacker can exploit this issue by sending a crafted HTTP request to upload a ZIP archive containing path traversal sequences, allowing arbitrary file writes and leading to code execution.

8.8 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://labs.watchtowr.com/is-b-for-backdoor-pre-auth-rce-chain-in-sitecore-experience-platform/ Exploit Third Party Advisory
https://support.sitecore.com/kb?id=kb_article_view&sysparm_article=KB1003667 Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:sitecore:experience_commerce:*:*:*:*:*:*:*:*
cpe:2.3:a:sitecore:experience_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:sitecore:experience_platform:*:*:*:*:*:*:*:*
cpe:2.3:a:sitecore:experience_platform:10.4:-:*:*:*:*:*:*
cpe:2.3:a:sitecore:managed_cloud:-:*:*:*:*:*:*:*
History

08 Sep 2025, 19:22

Type Values Removed Values Added
Summary
  • (es) Las versiones 9.0 a 9.3 y 10.0 a 10.4 de Sitecore Experience Manager (XM), Experience Platform (XP) y Experience Commerce (XC) se ven afectadas por una vulnerabilidad de Zip Slip. Un atacante remoto autenticado puede explotar este problema enviando una solicitud HTTP manipulada para cargar un archivo ZIP que contenga secuencias de path traversal, lo que permite escrituras arbitrarias en archivos y provoca la ejecución de código.
CPE cpe:2.3:a:sitecore:experience_platform:10.4:-:*:*:*:*:*:*
cpe:2.3:a:sitecore:experience_commerce:*:*:*:*:*:*:*:*
cpe:2.3:a:sitecore:experience_platform:*:*:*:*:*:*:*:*
cpe:2.3:a:sitecore:managed_cloud:-:*:*:*:*:*:*:*
cpe:2.3:a:sitecore:experience_manager:*:*:*:*:*:*:*:*
References () https://labs.watchtowr.com/is-b-for-backdoor-pre-auth-rce-chain-in-sitecore-experience-platform/ - () https://labs.watchtowr.com/is-b-for-backdoor-pre-auth-rce-chain-in-sitecore-experience-platform/ - Exploit, Third Party Advisory
References () https://support.sitecore.com/kb?id=kb_article_view&sysparm_article=KB1003667 - () https://support.sitecore.com/kb?id=kb_article_view&sysparm_article=KB1003667 - Vendor Advisory
First Time Sitecore experience Manager
Sitecore experience Commerce
Sitecore
Sitecore managed Cloud
Sitecore experience Platform

17 Jun 2025, 19:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-06-17 19:15

Updated : 2025-09-08 19:22

NVD link : CVE-2025-34510

Mitre link : CVE-2025-34510

CVE.ORG link : CVE-2025-34510

JSON object : View

Products Affected

sitecore

  • experience_commerce
  • experience_manager
  • experience_platform
  • managed_cloud
CWE
CWE-23

Relative Path Traversal