CNNVD-202511-2535 Information

CNNVD ID

CNNVD-202511-2535

Related CVE

CVE-2025-61949

• CNNVD Published: 2025-11-21

Description (Chinese)

LogStare Collector是日本LogStare公司的一个数据收集器。 LogStare Collector存在跨站脚本漏洞，该漏洞源于UserManagement中存在存储型跨站脚本，可能导致任意脚本执行。

Description (English)

LogStare Collector is a data collector for LogStare, Japan. LogStare Collector has a cross-site script loophole, which stems from the existence of a storage-type cross-site script in the United Nations, which may lead to any execution.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

LogStare

Published

2025-11-21

Last Modified

2026-02-24

References

https://jvn.jp/en/jp/JVN77560819/ https://www.logstare.com/vulnerability/2025-001/ https://access.redhat.com/security/cve/cve-2025-61949

Patch

https://www.logstare.com/vulnerability/2025-001/