CVE-2025-64730

Опубликовано: 25 нояб. 2025

Источник: nvd

CVSS3: 5.2

CVSS3: 6.1

EPSS Низкий

Описание

Cross-site scripting vulnerability exists in SNC-CX600W all versions. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who accessed the product.

Ссылки

https://jvn.jp/en/jp/JVN75140384/
Third Party Advisory
https://www.sony.com/electronics/support/ip-cameras-fixed/snc-cx600w
Product

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:sony:snc-cx600w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sony:snc-cx600w:-:*:*:*:*:*:*:*

EPSS

Процентиль: 8%

0.0003

Низкий

5.2 Medium

CVSS3

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-q4qj-8g79-gj6r

CVSS3: 5.2

github

2 месяца назад

Cross-site scripting vulnerability exists in SNC-CX600W all versions. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who accessed the product.

EPSS

Процентиль: 8%

0.0003

Низкий

5.2 Medium

CVSS3

6.1 Medium

CVSS3

Дефекты

CWE-79