Security Advisory

CVE-2025-43714

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-19 00:00:00
Last updated 2025-05-19 15:50:23
Assigner mitre
State PUBLISHED

Description

The ChatGPT system through 2025-03-30 performs inline rendering of SVG documents (instead of, for example, rendering them as text inside a code block), which enables HTML injection within most modern graphical web browsers.