Lucene search
+L

CVE-2025-14499

🗓️ 23 Dec 2025 21:19:13Reported by zdiType 
cve
 cve
🔗 web.nvd.nist.gov👁 26 Views

CVE-2025-14499 allows authentication bypass in IceWarp gmaps through unsafe parameter handling with cross site scripting requiring user interaction.

Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
circl
CVE-2025-14499
10 Dec 202505:00
circl
cnnvd
IceWarp 跨站脚本漏洞
23 Dec 202500:00
cnnvd
cvelist
CVE-2025-14499 IceWarp gmaps Cross-Site Scripting Authentication Bypass Vulnerability
23 Dec 202521:19
cvelist
euvd
EUVD-2025-205007
24 Dec 202500:30
euvd
nvd
CVE-2025-14499
23 Dec 202522:15
nvd
ptsecurity
PT-2025-50578
10 Dec 202500:00
ptsecurity
redhatcve
CVE-2025-14499
24 Dec 202521:19
redhatcve
vulnrichment
CVE-2025-14499 IceWarp gmaps Cross-Site Scripting Authentication Bypass Vulnerability
23 Dec 202521:19
vulnrichment
zdi
IceWarp gmaps Cross-Site Scripting Authentication Bypass Vulnerability
10 Dec 202500:00
zdi
Vulners
Node
icewarpicewarpRange14.2.0.5
[
  {
    "vendor": "IceWarp",
    "product": "IceWarp",
    "versions": [
      {
        "version": "14.2.0.5",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 08:36Current
8.4High risk
Vulners AI Score8.4
CVSS 38.8
EPSS0.00668
SSVC
26