CVE-2025-1484 — MEDIUM (6.5)

Vulnerability Description

A vulnerability exists in the media upload component of the Asset Suite versions listed below. If successfully exploited an attacker could impact the confidentiality or integrity of the system. An attacker can use this vulnerability to construct a request that will cause JavaScript code supplied by the attacker to execute within the user’s browser in the context of that user’s session with the application.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality

LOW

Integrity

LOW

Availability

LOW

Related Weaknesses (CWE)

CWE-184

References

https://publisher.hitachienergy.com/preview?DocumentID=8DBD000212&LanguageCode=e

FAQ

What is CVE-2025-1484?

CVE-2025-1484 is a vulnerability with a CVSS score of 6.5 (MEDIUM). A vulnerability exists in the media upload component of the Asset Suite versions listed below. If successfully exploited an attacker could impact the confidentiality or integrity of the system. An a...

How severe is CVE-2025-1484?

CVE-2025-1484 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-1484?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.