CVE-2025-41442 Information

Description

A vulnerability exists in Advantech iView versions prior to 5.7.05 build 7057 which could allow a reflected cross-site scripting (XSS) attack. By manipulating certain input parameters an attacker could execute unauthorized scripts in the user’s browser potentially leading to information disclosure or other malicious activities.

Reference

https://www.advantech.com/en/support/details/firmware-?id=1-HIPU-183 https://www.cisa.gov/news-events/ics-advisories/icsa-25-191-08

Related CNNVD

CNNVD-202507-1599 (Published: 2025-07-11)