Vulnerability Description
A cross-site scripting (XSS) vulnerability has been reported to affect Notification Center. If a remote attacker gains an administrator account, they can then exploit the vulnerability to bypass security mechanisms or read application data. We have already fixed the vulnerability in the following versions: Notification Center 2.1.0.3443 and later Notification Center 1.9.2.3163 and later Notification Center 3.0.0.3466 and later
Related Weaknesses (CWE)
References
FAQ
What is CVE-2025-54167?
CVE-2025-54167 is a documented vulnerability. A cross-site scripting (XSS) vulnerability has been reported to affect Notification Center. If a remote attacker gains an administrator account, they can then exploit the vulnerability to bypass secur...
How severe is CVE-2025-54167?
CVSS scoring is not yet available for CVE-2025-54167. Check NVD for updates.
Is there a patch for CVE-2025-54167?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.