CVE-2025-25036

Published Mar 21, 2025

Last updated 14 days ago

CVSS medium 6.8

Overview

Description
Improper Restriction of XML External Entity Reference vulnerability in Jalios JPlatform allows XML Injection.This issue affects all versions of JPlatform 10 before 10.0.8 (SP8).
Source
disclosure@vulncheck.com
NVD status
Received

Risk scores

CVSS 3.1

Type
Secondary
Base score
6.8
Impact score
4
Exploitability score
2.3
Vector string
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
Severity
MEDIUM

Weaknesses

disclosure@vulncheck.com
CWE-611

Social media

Hype score
Not currently trending

  1. CVE-2025-25036 Improper Restriction of XML External Entity Reference vulnerability in Jalios JPlatform allows XML Injection.This issue affects all versions of JPlatform 10 before 10… https://t.co/AcRvbfZojv

    @CVEnew

    21 Mar 2025

    435 Impressions

    1 Retweet

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References