CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

RedhatCVE•added 2026/03/05 7:31 p.m.•2 views

CVE-2025-40895

A Stored HTML Injection vulnerability was discovered in the CMC's Sensor Map functionality due to improper validation on connected Guardians' properties. A malicious authenticated user with administrator privileges on a Guardian connected to a CMC can edit the Guardian's properties to inject HTML...

4.8CVSS6AI score0.00037EPSS

Exploits0References1

EUVD•added 2026/03/04 3:30 p.m.•0 views

EUVD-2025-208268

4.8CVSS6AI score0.00037EPSS

Exploits0References2

NVD•added 2026/03/04 2:16 p.m.•1 views

CVE-2025-40895

4.8CVSS0.00037EPSS

Exploits0References1

OSV•added 2026/03/04 2:16 p.m.•4 views

CVE-2025-40895

2CVSS5.8AI score0.00037EPSS

Exploits0References1

CVE•added 2026/03/04 1:52 p.m.•9 views

CVE-2025-40895

CVE-2025-40895 describes a Stored HTML Injection in the CMC Sensor Map feature caused by improper validation of connected Guardians’ properties. An authenticated administrator on a Guardian can edit properties to inject HTML; if Sensor Map is enabled, a victim CMC user may see injected HTML when ...

4.8CVSS6AI score0.00037EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/03/04 1:52 p.m.•23 views

CVE-2025-40895 HTML injection in Sensor Map in CMC before 25.6.0

4.8CVSS0.00037EPSS

Exploits0References1

Vulnrichment•added 2026/03/04 1:52 p.m.•3 views

CVE-2025-40895 HTML injection in Sensor Map in CMC before 25.6.0

4.8CVSS6AI score0.00037EPSS

Exploits0References1

CNNVD•added 2026/03/04 12:0 a.m.•3 views

Nozomi Networks CMC 跨站脚本漏洞

Nozomi Networks CMC is a network management platform developed by Nozomi Networks in the United States. Nozomi Networks CMC has a cross-site scripting vulnerability. This vulnerability stems from the improper attribute validation of connections to Guardian by the CMC Sensor Map function. It may...

4.8CVSS5.6AI score0.00037EPSS

Exploits0References1

Positive Technologies•added 2026/03/04 12:0 a.m.•3 views

PT-2026-22915

4.8CVSS6AI score0.00037EPSS

Exploits0References2

NOZOMI•added 2026/03/04 12:0 a.m.•3 views

HTML injection in Sensor Map in CMC before 25.6.0

Summary A Stored HTML Injection vulnerability was discovered in the CMC's Sensor Map functionality due to improper validation on connected Guardians' properties. Impact A malicious authenticated user with administrator privileges on a Guardian connected to a CMC can edit the Guardian's properties...

4.8CVSS6AI score0.00037EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by