Vulnerability Description
FMS developed by Otsuka Information Technology has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks.
Related Weaknesses (CWE)
References
- https://www.twcert.org.tw/en/cp-139-10521-abdc1-2.html
- https://www.twcert.org.tw/tw/cp-132-10520-03f29-1.html
FAQ
What is CVE-2025-13589?
CVE-2025-13589 is a documented vulnerability. FMS developed by Otsuka Information Technology has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user's browser thr...
How severe is CVE-2025-13589?
CVSS scoring is not yet available for CVE-2025-13589. Check NVD for updates.
Is there a patch for CVE-2025-13589?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.