CVE-2025-40894 | Nozomi Guardian/CMC up to 25.5.x Alerted Nodes Dashboard cross site scripting

Inserito da Angelo Barbosa | Mar 4, 2026 | CVE

A vulnerability categorized as problematic has been discovered in Nozomi Guardian and CMC up to 25.5.x. This impacts an unknown function of the component Alerted Nodes Dashboard. The manipulation results in cross site scripting.

This vulnerability is known as CVE-2025-40894. It is possible to launch the attack remotely. No exploit is available.

It is advisable to upgrade the affected component.

CVE-2025-40894 | Nozomi Guardian/CMC up to 25.5.x Alerted Nodes Dashboard cross site scripting

Post correlati

CVE-2024-9812 | code-projects Crud Operation System 1.0 delete.php sid sql injection

CVE-2025-29883 | QNAP File Station 5.5.6.4741 certificate validation (qsa-25-09)

CVE-2023-47883 | com.altamirano.fabricio.tvbrowser up to 4.5.1 on Android MainActivity code injection

CVE-2024-37759 | DataGear up to 5.0.0 SpEL Expression injection (Issue 32)