CVE-2018-19453
📊 8.8 HIGH⚡ 0.4%🎯 0 exploits
📅 Published Apr 10, 2019
📋 Status: Modified
Kentico CMS before 11.0.45 allows unrestricted upload of a file with a dangerous type.
CVSS v3.0 • NVD
🎯 Affected Products & Systems
1 product configurations affected
Filter by type:
| Type | Vendor | Product | Version Range | Status | CPE String |
|---|---|---|---|---|---|
📱App | kentico | kentico cms | < 11.0.45 | Vulnerable | cpe:2.3:a:kentico:kentico_cms:*:*:*:*:*:*:*:* |
📱
VulnerableApplication
Version: < 11.0.45
CPE:
cpe:2.3:a:kentico:kentico_cms:*:*:*:*:*:*:*:*
Metrics
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector:
NETWORK
Complexity:
LOW
Privileges:
NONE
User Interaction:
REQUIRED
Confidentiality:
HIGH
Integrity:
HIGH
Availability:
HIGH
Scope:
UNCHANGED
🔍 Technical Details
Analysis Status
ModifiedCVSS Details
8.8 (HIGH)v3.0
Source: [email protected]
EPSS Details
0.4% (Minimal)59.8th percentile
Last updated: Oct 31, 2025
Exploitation probability within 30 days
Published Date
Apr 10, 2019 (6 years ago)
Last Modified
Nov 21, 2024 (11 months ago)
Security Weaknesses1
CWE-434
References1
NVD