cbcvebase.
CVE-2024-11625
published 2025-01-07

CVE-2024-11625: Information Exposure Through an Error Message vulnerability in Progress Software Corporation Sitefinity.This issue affects Sitefinity: from 4.0 through…

PriorityP425medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
EPSS
0.29%
20.2th percentile
Information Exposure Through an Error Message vulnerability in Progress Software Corporation Sitefinity.This issue affects Sitefinity: from 4.0 through 14.4.8142, from 15.0.8200 through 15.0.8229, from 15.1.8300 through 15.1.8327, from 15.2.8400 through 15.2.8421.

Affected

8 ranges
VendorProductVersion rangeFixed in
progresssitefinity>= 15.0.8200 < 15.0.823015.0.8230
progresssitefinity>= 15.1.8300 < 15.1.832815.1.8328
progresssitefinity>= 15.2.8400 < 15.2.842215.2.8422
progresssitefinity>= 4.0 < 14.4.814314.4.8143
progress_software_corporationsitefinity15.0.8200 – 15.0.8229
progress_software_corporationsitefinity15.1.8300 – 15.1.8327
progress_software_corporationsitefinity15.2.8400 – 15.2.8421
progress_software_corporationsitefinity4.0 – 14.4.8142
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.