VYPR
Unrated severityNVD Advisory· Published Dec 18, 2025· Updated Dec 18, 2025

Kentico Xperience <= 10 Administrator Access Control Bypass

CVE-2020-36890

Description

An access control bypass vulnerability in Kentico Xperience allows administrators to modify global administrator user privileges via unauthorized requests. Attackers could potentially compromise global administrator accounts and invalidate security-sensitive macros by manipulating user privilege levels.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.