CNNVD-202602-2033 Information

CNNVD ID

CNNVD-202602-2033

Related CVE

CVE-2025-13649

• CNNVD Published: 2026-02-11

Description (Chinese)

Microcom ZeusWeb是西班牙Microcom公司的一个远程监控平台。 Microcom ZeusWeb 6.1.31版本存在安全漏洞，该漏洞源于对Recover password部分中Email参数注入XSS有效载荷，可能导致跨站脚本攻击。

Description (English)

Microcom ZeusWeb is a remote monitoring platform for the Spanish company Microcom. Microcom ZeusWeb 6.1.31 has a security loophole that originates from the injection of XSS payloads into Email parameters in the Recover Password section, which may result in a cross-site script attack.

Vulnerability Type

其他

Affected Vendor

Microcom

Published

2026-02-11

Last Modified

2026-02-24

References

https://www.hackrtu.com/blog/CNA-CVE-2025-13649/ https://www.hackrtu.com/blog/CNA-HRTU-0001/ https://www.microcom360.com/servicio-zeus-web/ https://zeus.microcom.es:4040/

Patch

https://www.microcom360.com/servicio-zeus-web/