exploitDog

CVE-2025-59025

Опубликовано: 27 нояб. 2025

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

Malicious e-mail content can be used to execute script code. Unintended actions can be executed in the context of the users account, including exfiltration of sensitive information. Sanitization has been updated to avoid such bypasses. No publicly available exploits are known

Ссылки

https://documentation.open-xchange.com/appsuite/security/advisories/csaf/2025/oxas-adv-2025-0003.json

EPSS

Процентиль: 12%

0.00039

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-4jpj-786v-c33m

CVSS3: 6.1

github

2 месяца назад

Malicious e-mail content can be used to execute script code. Unintended actions can be executed in the context of the users account, including exfiltration of sensitive information. Sanitization has been updated to avoid such bypasses. No publicly available exploits are known

EPSS

Процентиль: 12%

0.00039

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79