CNNVD-202511-1920 Information
Nov 17, 2025
cve
CNNVD ID
CNNVD-202511-1920
Related CVE
- CNNVD Published: 2025-11-17
Description (Chinese)
Siemens Mendix RichText是德国Siemens公司的一个开发平台中的组件。 Siemens Mendix RichText V4.0.0版本至V4.6.1之前版本存在跨站脚本漏洞,该漏洞源于输入中和不当,可能导致跨站脚本攻击。
Description (English)
Siemens Mendix RichText is part of a development platform for Siemens, Germany. Siemens Mendix RichText V4.0.0 to V4.6.1 had a cross-site script loophole, which originated in inappropriate input and could lead to cross-site script attacks.
Hazard Level
High
Vulnerability Type
跨站脚本
Affected Vendor
西门子
Published
2025-11-17
Last Modified
2026-02-24
References
https://cert-portal.siemens.com/productcert/html/ssa-190588.html https://access.redhat.com/security/cve/cve-2025-40834
Patch
https://marketplace.mendix.com/index3.html
Share on: