CVE-2025-2746: Kentico Xperience CMS Authentication Bypass Using an

Kentico Xperience CMS Authentication Bypass Using an Alternate Path or Channel Vulnerability. Kentico Xperience CMS contains an authentication bypass using an alternate path or channel vulnerability that could allow an attacker to control administrative objects.

• CISA KEV-listed (remediation due 2025-11-10)
• EPSS 90.2% (99.6% percentile)

Browse the CVE database

Read the full analysis on IntelFusions