CVE-2025-22373

Vulnerability Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SicommNet BASEC on SaaS allows Reflected XSS, XSS Through HTTP Query Strings, Rendering of Arbitrary HTML and alternation of CSS Styles This issue affects BASEC: from 14 Dec 2021.

Related Weaknesses (CWE)

CWE-79

References

https://basec.sicomm.net/login/
https://csirt.divd.nl/CVE-2025-22373
https://csirt.divd.nl/DIVD-2025-00001

FAQ

What is CVE-2025-22373?

CVE-2025-22373 is a documented vulnerability. Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SicommNet BASEC on SaaS allows Reflected XSS, XSS Through HTTP Query Strings, Rendering of ...

How severe is CVE-2025-22373?

CVSS scoring is not yet available for CVE-2025-22373. Check NVD for updates.

Is there a patch for CVE-2025-22373?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.