Security Advisory

CVE-2025-3894

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-23 10:20:03

Last updated 2025-05-23 12:12:19

Assigner CERT-PL

State PUBLISHED

Description

Text editor embedded into MegaBIP software does not neutralize user input allowing Stored XSS attacks on other users. In order to use the editor high privileges are required. Version 5.20 of MegaBIP fixes this issue.

← Browse all CVEs View on cve.org ↗