PT-2025-19379 · Debian+3 · Debian+3

Benjamin Vermunicht

+1

·

Publicado

2025-01-01

·

Atualizado

2025-08-13

·

CVE-2025-31501

CVSS v3.1

7.2

Alta

VetorAV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
Name of the Vulnerable Software and Affected Versions Debian Linux (affected versions not specified)
Description The issue concerns a Cross Site Scripting vulnerability via JavaScript injection in an Asset name. Additionally, there are package vulnerabilities in request-tracker5.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

XSS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-79

Identificadores relacionados

CVE-2025-31501
DSA-5909-1
USN-7692-1

Produtos afetados

Debian
Linuxmint
Ubuntu
Request-Tracker5