Vulnerability Description
Stored cross-site scripting (XSS) in the web interface of MiR software versions prior to 3.0.0 on MiR Robots and MiR Fleet allows execution of arbitrary JavaScript code in a victim’s browser
CVSS Score
5.5
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
Related Weaknesses (CWE)
References
- https://mobile-industrial-robots.com/security-advisories/cross-site-scripting
- https://supportportal.mobile-industrial-robots.com/documentation/mir-cybersecuri
FAQ
What is CVE-2025-9225?
CVE-2025-9225 is a vulnerability with a CVSS score of 5.5 (MEDIUM). Stored cross-site scripting (XSS) in the web interface of MiR software versions prior to 3.0.0 on MiR Robots and MiR Fleet allows execution of arbitrary JavaScript code in a victim’s browser
How severe is CVE-2025-9225?
CVE-2025-9225 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-9225?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.