CVE-2021-42237CRITICALCVSS 9.8CISA KEV: Actively Exploited

Sitecore XP Remote Command Execution Vulnerability

Published Mar 25, 2022·Updated Jul 6, 2026

Description

Sitcore XP contains an insecure deserialization vulnerability which can allow for remote code execution.

Public Exploits & PoCs2 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free