CVE-2025-66359

Опубликовано: 28 нояб. 2025

Источник: nvd

CVSS3: 8.5

CVSS3: 6.1

EPSS Низкий

Описание

An issue was discovered in Logpoint before 7.7.0. Insufficient input validation and a lack of output escaping in multiple components leads to a cross-site scripting (XSS) vulnerability.

Ссылки

https://servicedesk.logpoint.com/hc/en-us/articles/29158899698333-XSS-Vulnerability-due-to-insufficient-input-validation
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:logpoint:siem:*:*:*:*:*:*:*:*

Версия до 7.7.0 (исключая)

EPSS

Процентиль: 14%

0.00045

Низкий

8.5 High

CVSS3

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-wfv3-vv9v-vvmq

CVSS3: 8.5

github

2 месяца назад

An issue was discovered in Logpoint before 7.7.0. Insufficient input validation and a lack of output escaping in multiple components leads to a cross-site scripting (XSS) vulnerability.

EPSS

Процентиль: 14%

0.00045

Низкий

8.5 High

CVSS3

6.1 Medium

CVSS3

Дефекты

CWE-79