Security Advisory

CVE-2025-15032

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-16 18:11:32

Last updated 2026-01-16 18:35:45

Assigner BCNY

State PUBLISHED

Description

Missing about:blank indicator in custom-sized new windows in Dia before 1.9.0 on macOS could allow an attacker to spoof a trusted domain in the window title and mislead users about the current site.

← Browse all CVEs View on cve.org ↗