CVE-2025-34511

high-risk

Published 2025-06-17

Sitecore PowerShell Extensions, an add-on to Sitecore Experience Manager (XM) and Experience Platform (XP), through version 7.0 is vulnerable to an unrestricted file upload issue. A remote, authenticated attacker can upload arbitrary files to the server using crafted HTTP requests, resulting in remote code execution.

Do I need to act?

84.6% chance of exploitation in next 30 days

EPSS score — higher than 15% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 8.8/10 High

NETWORK / LOW complexity

Affected Products (5)

Experience Commerce

Experience Manager

Experience Platform

Managed Cloud

Affected Vendors

Sitecore

References (2)

Exploit https://labs.watchtowr.com/is-b-for-backdoor-pre-auth-rce-chain-in-sitecore-expe...

Vendor Advisory https://support.sitecore.com/kb?id=kb_article_view&sysparm_article=KB1003667

/ 100

high-risk

Severity 30/34 · Critical

Exploitability 20/34 · Moderate

Exposure 12/34 · Low