Umbraco.cms.infrastructure
This hub aggregates every CVE we track for Umbraco.cms.infrastructure, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
2
CVEs tracked
0
Critical
1
High
0
In CISA KEV
Severity distribution
HIGH1MEDIUM1
Monthly trend
0
0
0
0
0
0
1
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 2 most recently published vulnerabilities affecting Umbraco.cms.infrastructure.
- CVE-2024-55488A stored cross-site scripting (XSS) vulnerability in Umbraco CMS v14.3.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. NOTE: This has been disputed by the vendor ...6.5
- CVE-2023-37267Umbraco allows possible Admin-level access to backoffice without Auth under rare conditions7.5
Product normalization is registry-driven with AI assist and human review. How it works