CVE-2025-25612 in S3150-8T2Finfo

Zusammenfassung

von MITRE • 17.03.2025

FS Inc S3150-8T2F prior to version S3150-8T2F_2.2.0D_135103 is vulnerable to Cross Site Scripting (XSS) in the Time Range Configuration functionality of the administration interface. An attacker can inject malicious JavaScript into the "Time Range Name" field, which is improperly sanitized. When this input is saved, it is later executed in the browser of any user accessing the affected page, including administrators, resulting in arbitrary script execution in the user's browser.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

MITRE

Reservieren

07.02.2025

Veröffentlichung

17.03.2025

Moderieren

akzeptiert

Eintrag

VDB-299938

CPE

bereit

CWE

CWE-79 (bestätigt)

CVSS

2.4 (VulDB)

EPSS

0.00504

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-25612
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-25612
CVE Details	https://www.cvedetails.com/cve/CVE-2025-25612/

◂ Zurück Übersicht Weiter ▸

Do you need the next level of professionalism?

Upgrade your account now!