CVE-2025-34138 | Sitecore Experience Manager up to 10.4 improper authorization (KB1003743)

A vulnerability was found in Sitecore Experience Manager, Experience Platform, Experience Commerce and Managed Cloud up to 10.4 and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to improper authorization.

This vulnerability is handled as CVE-2025-34138. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More