CVE-2025-40587 | Siemens Polarion V2404/Polarion V2410 Document cross site scripting (ssa-035571)

Inserito da Angelo Barbosa | Feb 10, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in Siemens Polarion V2404 and Polarion V2410. Impacted is an unknown function of the component Document Handler. The manipulation leads to cross site scripting.

This vulnerability is referenced as CVE-2025-40587. Remote exploitation of the attack is possible. No exploit is available.

It is advisable to upgrade the affected component.

CVE-2025-40587 | Siemens Polarion V2404/Polarion V2410 Document cross site scripting (ssa-035571)

Post correlati

CVE-2025-24710 | Marcel Pol Gwolle Guestbook Plugin up to 4.7.1 on WordPress cross site scripting

CVE-2025-1464 | Baiyi Cloud Asset Management System up to 20250204 admin.house.collect.php project_id sql injection

CVE-2024-0588 | Paid Memberships Pro Plugin up to 2.12.10 on WordPress cross-site request forgery

CVE-2025-21391 | Microsoft Windows up to Server 2025 Storage link following