How severe is CVE-2025-25264?

CVE-2025-25264 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2025-25264

6.5MEDIUM

An unauthenticated remote attacker can trick an admin to visit a website containing malicious java script code. The current overly permissive CORS policy allows the attacker to obtain any files from t

Опубликовано: 6/16/2025Обновлено: 11/21/2025

Описание

An unauthenticated remote attacker can trick an admin to visit a website containing malicious java script code. The current overly permissive CORS policy allows the attacker to obtain any files from the file system.

ИИ-АнализНа базе ИИ

Ссылки

https://certvde.com/en/advisories/VDE-2025-018/