Security Advisory

CVE-2025-14340

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-18 13:39:11

Last updated 2026-02-19 09:35:38

Assigner Payara

State PUBLISHED

Description

Cross-site scripting in REST Management Interface in Payara Server <4.1.2.191.54, <5.83.0, <6.34.0, <7.2026.1 allows an attacker to mislead the administrator to change the admin password via URL Payload.

← Browse all CVEs View on cve.org ↗