Unrated severityNVD Advisory· Published Dec 18, 2025· Updated Dec 18, 2025
Kentico Xperience <= 13.0.159 Authentication Information Disclosure
CVE-2024-58320
Description
An information disclosure vulnerability in Kentico Xperience allows public users to access sensitive administration interface hostname details during authentication. Attackers can retrieve confidential hostname configuration information through a public endpoint, potentially exposing internal network details.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- devnet.kentico.com/download/hotfixesmitrevendor-advisorypatch
- www.vulncheck.com/advisories/kentico-xperience-authentication-information-disclosuremitrethird-party-advisory
News mentions
0No linked articles in our index yet.