CVE-2025-11147

Опубликовано: 29 сент. 2025

Источник: nvd

CVSS3: 5.4

EPSS Низкий

Описание

Reflected cross-site scripting (XSS) in Apt-Cacher-NG v3.2.1. The vulnerability allows malicious scripts (XSS) to be executed in “/html/.html”.

Ссылки

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-apt-cacher-ng
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:apt-cacher-ng_project:apt-cacher-ng:3.2-1:*:*:*:*:*:*:*

EPSS

Процентиль: 16%

0.00052

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-11147

CVSS3: 5.4

ubuntu

4 месяца назад

Reflected cross-site scripting (XSS) in Apt-Cacher-NG v3.2.1. The vulnerability allows malicious scripts (XSS) to be executed in “/html/<filename>.html”.

CVE-2025-11147

CVSS3: 5.4

debian

4 месяца назад

Reflected cross-site scripting (XSS) in Apt-Cacher-NG v3.2.1. The vuln ...

GHSA-c3mh-jph2-cvxh

CVSS3: 5.4

github

4 месяца назад

Reflected cross-site scripting (XSS) in Apt-Cacher-NG v3.2.1. The vulnerability allows malicious scripts (XSS) to be executed in “/html/<filename>.html”.

EPSS

Процентиль: 16%

0.00052

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79