CVE-2025-53690: ViewState Deserialization Zero-Day Vulnerability Fixed in Sitecore Products

product_update Announcement • Rapid Migration and Modernization Program

highAction Required

product_update

Summary

Sitecore products have been patched to address a critical ViewState deserialization zero-day vulnerability (CVE-2025-53690). Users are urged to update immediately.

Details

Detailed information will be provided soon.

Next Steps

Review the announcement details carefully
Take required actions as outlined above
Complete by
Contact support if you have questions or need assistance

Source

Google Cloud Blog | News, Features and Announcements

blog update

View original source →

Community Feedback

Community Score0

Help improve communications by rating the clarity and usefulness of this announcement