CVE-2025-53690 - PatchNow

Data Source: CIRCL

Confidence: HIGH

Exploitation Method: DIRECT_NETWORK

CVE Published: 2025-09-03

Added to CISA KEV: 2025-09-04 1 DAY BETWEEN CVE AND KEV

⚠️ CRITICAL: Check for indicators of compromise - this vulnerability is in CISA KEV indicating active exploitation in the wild. Review logs, check for unauthorized access, verify system integrity before patching
CRITICAL: Immediately patch affected Sitecore installations or implement workarounds per Sitecore KB1003865
Replace default/sample machine keys with unique cryptographically strong keys
Monitor for suspicious ViewState manipulation and deserialization attacks
Implement web application firewall rules to detect malicious ViewState payloads

ViewState Deserialization Zero-Day Vulnerability in Sitecore ...
An active ViewState deserialization attack affecting Sitecore products, where attackers achieved remote code execution.
Sitecore zero-day vulnerability exploited by
A threat actor is leveraging a zero-day vulnerability (CVE-2025-53690) to breach internet-facing, on-prem deployments of Sitecore solutions.
CISA Orders Immediate Patch of Critical Sitecore Vulnerability Under ...
CVE-2025-53690, a critical Sitecore flaw (CVSS 9.0), exploited since Dec 2024, enables RCE and data theft.
CVE-2025-53690 Detail - NVD
Information Technology Laboratory National Vulnerability DatabaseVulnerabilities
Vulnerability — Latest News, Reports & Analysis | The Hacker News
The vulnerability , tracked as CVE-2025-53690 , carries a CVSS score of 9.0 out of a maximum of 10.0, indicating critical severity.Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks.

🔴 CVE-2025-53690