PatchSiren

XWiki CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

Known exploited XWiki CVE published 2025-10-30

CVE-2025-24893

CVE-2025-24893 affects XWiki Platform and is identified by CISA as a known exploited vulnerability. Because it is in the KEV catalog, defenders should treat it as an active risk and prioritize remediation using vendor guidance, with CISA’s due date set to 2025-11-20.