Primary

Context

Kentico Xperience Denial-of-Service Vulnerability via Unsafe Reflection

Vulnerability

Patched

A denial-of-service vulnerability has been identified in Kentico Xperience versions through 13.0.180. This vulnerability allows an unauthenticated attacker to terminate the current process, causing a disruption in service.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing the application to become unresponsive or unavailable.

Remediation

Users can upgrade to Kentico Xperience version 13.0.181 or later, where this vulnerability has been addressed. Instructions for applying hotfixes are available in the Kentico Xperience documentation.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

2.5

exploitability

7.6

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

2.5

exploitability

7.6

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Kentico Xperience Denial-of-Service Vulnerability via Unsafe Reflection

Vulnerability

Impact

Remediation

Affected Products

Kentico Xperience

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating