CVE-2025-40895 | Nozomi CMC up to 25.5.x cross site scripting

Inserito da Angelo Barbosa | Mar 4, 2026 | CVE

A vulnerability labeled as problematic has been found in Nozomi CMC up to 25.5.x. Affected by this vulnerability is an unknown functionality. Such manipulation leads to basic cross site scripting.

This vulnerability is uniquely identified as CVE-2025-40895. The attack can be launched remotely. No exploit exists.

The affected component should be upgraded.

CVE-2025-40895 | Nozomi CMC up to 25.5.x cross site scripting

Post correlati

CVE-2024-46820 | Linux Kernel up to 6.10.8 AMD Display amdgpu_irq_put state issue (aa92264ba6fd/10fe1a79cd1b)

CVE-2025-54569 | Malwarebytes Binisoft Windows Firewall Control 6.8.1.0/6.9.2.0/6.9.9.2 Installer authorization

CVE-2024-7440 | Vivotek CC8160 VVTK-0100d upload_file.cgi getenv QUERY_STRING command injection

CVE-2025-1595 | Anhui Xufan Information Technology EasyCVR up to 2.7.0 /api/v1/getbaseconfig information disclosure