CVE-2025-24297 Information

Description

Due to lack of server-side input validation attackers can inject malicious JavaScript code into users personal spaces of the web portal.

Reference

https://www.cisa.gov/news-events/ics-advisories/icsa-25-105-04