Sitecore Experience Manager up to 10.4 improper authorization 🚫 [False Positive]

Noticeinfo

⚠️ This issue appears to be a false-positive. Please verify the sources mentioned and consider not using this entry at all.

Productinfo

Type

• Cloud Software

Vendor

• Sitecore

Name

• Experience Commerce
• Experience Manager
• Experience Platform
• Managed Cloud

Version

• 10.0
• 10.1
• 10.2
• 10.3
• 10.4

Timelineinfo

04/15/2025 CVE reserved
07/25/2025 +101 days Advisory disclosed
07/25/2025 +0 days VulDB entry created
12/05/2025 +133 days VulDB entry last update

Sourcesinfo

Advisory: KB1003743
False Positive: Yes

CVE: CVE-2025-34138 (🔒)
GCVE (CVE): GCVE-0-2025-34138
GCVE (VulDB): GCVE-100-317714
EUVD: 🔒

Entryinfo

Created: 07/25/2025 19:16
Updated: 12/05/2025 07:38
Changes: 07/25/2025 19:16 (66), 07/29/2025 21:24 (1), 12/04/2025 19:40 (1), 12/05/2025 07:38 (3)
Complete: 🔍
Cache ID: 216::103

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Discussion

Interested in the pricing of exploits?

See the underground prices here!