CNNVD-202511-2987 Information

CNNVD ID

CNNVD-202511-2987

Related CVE

CVE-2025-66359

• CNNVD Published: 2025-11-28

Description (Chinese)

Logpoint SIEM是Logpoint公司的一个安全信息与事件管理（SIEM）解决方案。 Logpoint SIEM 7.7.0之前版本存在跨站脚本漏洞，该漏洞源于输入验证和输出转义不足，可能导致跨站脚本攻击。

Description (English)

Logpoint SIEM is a Security Information and Incident Management (SIEM) solution for Logpoint. Prior to the Logpoint SIEM 7.7.0, there was a cross-site script loophole, which stemmed from inadequate input validation and output conversion, which could lead to cross-site script attacks.

Hazard Level

Medium

Vulnerability Type

跨站脚本

Affected Vendor

Logpoint

Published

2025-11-28

Last Modified

2026-02-24

References

https://servicedesk.logpoint.com/hc/en-us/articles/29158899698333-XSS-Vulnerability-due-to-insufficient-input-validation https://access.redhat.com/security/cve/cve-2025-66359

Patch

https://servicedesk.logpoint.com/hc/en-us/articles/29158899698333-XSS-Vulnerability-due-to-insufficient-input-validation