Back to CVE List

CVE-2025-66486

MEDIUM SEVERITY

CVSS Score & Metrics

Base Score
4.8 / 10
Vector String
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

Vulnerability Description

IBM Aspera Shares 1.9.9 through 1.11.0 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site.

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-80
Source
NVD
Vendor
IBM
Product
Aspera Shares

External References

Discussion (0)

Add Comment

No comments yet. Be the first!