KEV Entry
CVE-2025-34509
Known Exploited Vulnerability Entry External Catalog
Entry Details
Confirmed Exploited2026-06-26 00:00 UTC
Characteristics
75.0
Timestamps
2025-11-14
2025-11-14
2026-06-26
Scope
Affected: Sitecore / Sitecore Experience Manager (XM), Experience Platform (XP), Experience Commerce (XC) | Class: cms | Severity: High (CVSS 7.5) | IoT: no | In CISA KEV: no | Honeypot connections on 2026-06-26: 2
References
- {'id': 'CVE-2025-34509', 'url': 'https://www.cve.org/CVERecord?id=CVE-2025-34509'}
- {'id': 'shadowserver', 'url': 'https://www.shadowserver.org/what-we-do/network-reporting/honeypot-exploited-vulnerabilities-report/'}
a7b9adda-549c-44c0-b67d-444ecd1affc4
c8fb6bf1-f81f-4cb8-95b1-eadbb3b54ee8
2026-06-30 09:23 UTC
2026-06-30 15:52 UTC
Evidence
1| Type | Source | Signal | Confidence | Details | GCVE Metadata |
|---|---|---|---|---|---|
| honeypot | shadowserver | in_the_wild_attempts | 0.70 |
View details
|
- |