CVE-2025-34138

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://support.sitecore.com/kb?id=kb_article_view&sysparm_article=KB1003734", "name": "https://support.sitecore.com/kb?id=kb_article_view&sysparm_article=KB1003734", "tags": [], "refsource": ""}, {"url": "https://support.sitecore.com/kb?id=kb_article_view&sysparm_article=KB1003743", "name": "https://support.sitecore.com/kb?id=kb_article_view&sysparm_article=KB1003743", "tags": [], "refsource": ""}, {"url": "https://www.vulncheck.com/advisories/sitecore-xm-xp-xc-managed-cloud-rce", "name": "https://www.vulncheck.com/advisories/sitecore-xm-xp-xc-managed-cloud-rce", "tags": [], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "A vulnerability exists in Sitecore\u00a0Experience Manager (XM),\u00a0Experience Platform (XP),\u00a0Experience Commerce (XC), and\u00a0Managed Cloud that could allow remote code execution or\u00a0unauthorized access to information.\u00a0This vulnerability affects all Experience Platform topologies (XM, XP, XC) from 9.2 Initial Release through 10.4 Initial Release. PaaS and containerized solutions are similarly affected."}]}, "problemtype": {"problemtype_data": [{"description": []}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2025-34138", "ASSIGNER": "disclosure@vulncheck.com"}}, "impact": {}, "publishedDate": "2025-07-25T16:15Z", "configurations": {"nodes": [], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-07-25T19:15Z"}