Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2026/03/05 7:31 p.m.6 views

CVE-2025-40894

A Stored HTML Injection vulnerability was discovered in the Alerted Nodes Dashboard functionality due to improper validation on an input parameter. A malicious authenticated user with the required privileges could edit a node label to inject HTML tags. If the system is configured to use the Alert...

5.4CVSS6AI score0.00162EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/04 3:30 p.m.16 views

EUVD-2025-208267

A Stored HTML Injection vulnerability was discovered in the Alerted Nodes Dashboard functionality due to improper validation on an input parameter. A malicious authenticated user with the required privileges could edit a node label to inject HTML tags. If the system is configured to use the Alert...

4.4CVSS6AI score0.00162EPSS
Exploits0References2
NVD
NVD
added 2026/03/04 2:16 p.m.18 views

CVE-2025-40894

A Stored HTML Injection vulnerability was discovered in the Alerted Nodes Dashboard functionality due to improper validation on an input parameter. A malicious authenticated user with the required privileges could edit a node label to inject HTML tags. If the system is configured to use the Alert...

5.4CVSS0.00162EPSS
Exploits0References2
OSV
OSV
added 2026/03/04 2:16 p.m.5 views

CVE-2025-40894

A Stored HTML Injection vulnerability was discovered in the Alerted Nodes Dashboard functionality due to improper validation on an input parameter. A malicious authenticated user with the required privileges could edit a node label to inject HTML tags. If the system is configured to use the Alert...

5.4CVSS5.8AI score0.00162EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/04 1:51 p.m.4 views

CVE-2025-40894 HTML injection in Alerted Nodes Dashboard in Guardian/CMC before 25.6.0

A Stored HTML Injection vulnerability was discovered in the Alerted Nodes Dashboard functionality due to improper validation on an input parameter. A malicious authenticated user with the required privileges could edit a node label to inject HTML tags. If the system is configured to use the Alert...

4.4CVSS6AI score0.00162EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/04 1:51 p.m.28 views

CVE-2025-40894 HTML injection in Alerted Nodes Dashboard in Guardian/CMC before 25.6.0

A Stored HTML Injection vulnerability was discovered in the Alerted Nodes Dashboard functionality due to improper validation on an input parameter. A malicious authenticated user with the required privileges could edit a node label to inject HTML tags. If the system is configured to use the Alert...

4.4CVSS0.00162EPSS
Exploits0References1
CVE
CVE
added 2026/03/04 1:51 p.m.18 views

CVE-2025-40894

CVE-2025-40894 describes a Stored HTML Injection in the Alerted Nodes Dashboard due to improper input validation. A logged-in user with required privileges can edit a node label to inject HTML, which may render in a victim’s browser if alerts exist for that node, enabling phishing and potentially...

5.4CVSS6AI score0.00162EPSS
Exploits0References2Affected Software2
Positive Technologies
Positive Technologies
added 2026/03/04 12:0 a.m.12 views

PT-2026-22914

A Stored HTML Injection vulnerability was discovered in the Alerted Nodes Dashboard functionality due to improper validation on an input parameter. A malicious authenticated user with the required privileges could edit a node label to inject HTML tags. If the system is configured to use the Alert...

4.4CVSS6AI score0.00162EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/04 12:0 a.m.7 views

Nozomi Networks CMC和Nozomi Networks Guardian 跨站脚本漏洞

Nozomi Networks CMC and Nozomi Networks Guardian are both products of Nozomi Networks, a company based in the United States. Nozomi Networks CMC is a network management platform. Nozomi Networks Guardian is a security software. Both Nozomi Networks CMC and Nozomi Networks Guardian have cross-site...

5.4CVSS5.7AI score0.00162EPSS
Exploits0References1
NOZOMI
NOZOMI
added 2026/03/04 12:0 a.m.11 views

HTML injection in Alerted Nodes Dashboard in Guardian/CMC before 25.6.0

Summary A Stored HTML Injection vulnerability was discovered in the Alerted Nodes Dashboard functionality due to improper validation on an input parameter. Impact A malicious authenticated user with the required privileges could edit a node label to inject HTML tags. If the system is configured t...

5.4CVSS6AI score0.00162EPSS
Exploits0Affected Software2
Rows per page
Query Builder