CISA has directed federal agencies to urgently patch CVE-2025-53690, a critical Sitecore XP vulnerability (CVSS 9.0) exploited since December 2024 for remote code execution and data theft. Private sectors are advised to follow suit amid rising CMS attacks. Swift remediation is essential to prevent breaches and ransomware.
