Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') vulnerability in Sitecore Sitecore Experience Manager (XM), Sitecore Experience Platform (XP) allows Cache Poisoning.This issue affects Sitecore Experience Manager (XM): from 9.0 through 9.3, from 10.0 through 10.4; Experience Platform (XP): from 9.0 through 9.3, from 10.0 through 10.4.
The vulnerability results from the use of externally controlled input data to select classes or code in the reflection mechanism (CWE-470). An attacker can provide crafted input that the application uses to dynamically load or execute a class, leading to cache poisoning. The lack of authentication requirements (PR:N, UI:N) means that the exploit can be carried out remotely over the network without any user interaction.
An attacker can cause cache poisoning, which threatens the confidentiality, integrity, and availability of the system. According to publicly available references, the vulnerability can be escalated to remote code execution (RCE).
Patches available from the vendor should be applied according to the references — details are available in the Sitecore knowledge base article KB1003667. It is recommended to immediately verify the deployed versions and apply available patches.
Sitecore Experience Manager (XM) in versions 9.0 to 9.3 and 10.0 to 10.4; Sitecore Experience Platform (XP) in versions 9.0 to 9.3 and 10.0 to 10.4. Also affects Sitecore Experience Commerce and Sitecore Managed Cloud.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HSitecore Experience Commerce
APPSitecore9.0 – 10.4Sitecore Experience Manager
APPSitecore9.0 – 10.4Sitecore Experience Platform
APPSitecore10.49.0 – 10.4 (bez)Sitecore Managed Cloud
APPSitecorewszystkie wersje
Related vulnerabilities
Krótki tytuł podatności po polsku (max 80 znaków)
Sitecore XP 7.5 Initial Release to Sitecore XP 8.2 Update-7 is vulnerable to an insecure deserialization attac...
Deserialization of Untrusted Data in the Sitecore.Security.AntiCSRF (aka anti CSRF) module in Sitecore CMS 7.0...
Multiple Sitecore products allow remote code execution. This affects Experience Manager, Experience Platform, ...
Deserialization of Untrusted Data in Sitecore Experience Platform through 10.2 allows remote attackers to run ...