Experience Platform
by Sitecore
Take action — actively targeted
Experience Platform is actively targeted by attackers. A significant proportion of its known vulnerabilities are being exploited.
What to do
- Apply all available updates immediately
- Review your exposure — is this internet-facing?
- Monitor vendor advisories for this product
What Attackers Target
Vulnerabilities with high exploit probability
42.9%
Confirmed actively exploited (CISA)
14.3%
Public exploit code available
0.0%
Based on 21 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2021-42237 | 9.8 | 94.4% | Yes |
| CVE-2023-35813 | 9.8 | 93.5% | — |
| CVE-2024-46938 | 7.5 | 93.4% | — |
| CVE-2025-34510 | 8.8 | 86.0% | — |
| CVE-2025-34511 | 8.8 | 84.6% | — |
| CVE-2019-9874 | 9.8 | 79.7% | Yes |
| CVE-2019-11080 | 8.8 | 41.4% | — |
| CVE-2025-34509 | 7.5 | 18.1% | — |
| CVE-2023-26262 | 7.2 | 17.5% | — |
| CVE-2025-53690 | 9.0 | 8.5% | Yes |
| CVE-2025-53691 | 8.8 | 5.0% | — |
| CVE-2023-33652 | 8.8 | 3.7% | — |
| CVE-2023-33653 | 8.8 | 2.9% | — |
| CVE-2023-27068 | 9.8 | 1.9% | — |
| CVE-2023-27067 | 7.5 | 0.8% | — |
| CVE-2023-27066 | 6.5 | 0.7% | — |
| CVE-2023-33651 | 7.5 | 0.4% | — |
| CVE-2025-53693 | 9.8 | 0.4% | — |
| CVE-2016-8855 | 6.1 | 0.3% | — |
| CVE-2019-13493 | 5.4 | 0.2% | — |
56
/ 100
high-risk
Active Threat
49/50 · Critical
Exploit Availability
7/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.