CNNVD-202507-2361 Information
Jul 17, 2025
cve
CNNVD ID
CNNVD-202507-2361
Related CVE
- CNNVD Published: 2025-07-17
Description (Chinese)
Leviton AcquiSuite和Leviton Energy Monitoring Hub都是美国Leviton公司的一个工业级能源数据采集与监控网关。 Leviton AcquiSuite和Leviton Energy Monitoring Hub存在跨站脚本漏洞,该漏洞源于URL参数中存在跨站脚本漏洞,可能导致窃取会话令牌和控制服务。
Description (English)
Leviton AcquiSuite and Leviton Energy Monitoring Hub are industrial energy data collection and monitoring gateways of the United States company Leviton. Leviton AcquiSuite and Leviton Energy Monitoring Hub had a cross-site script loophole, which stemmed from the presence of cross-site script holes in the URL parameters, which could lead to the theft of a session token and control services.
Hazard Level
Low
Vulnerability Type
跨站脚本
Affected Vendor
Leviton
Published
2025-07-17
Last Modified
2026-02-24
References
https://nvd.nist.gov/vuln/detail/CVE-2025-6185
Patch
https://leviton.com/products/a8810
Share on: