PT-2025-16804 · Alt Linux+5 · Alt Linux+5

Sean Ng

·

Published

2025-02-27

·

Updated

2026-05-26

·

CVE-2025-22872

CVSS v3.1

9.8

Critical

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions The product name cannot be determined.
Description The tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus character (/) as self-closing. This can result in such tags being marked as self-closing when directly using Tokenizer, and when using the Parse functions, content following such tags can be placed in the wrong scope during DOM construction, but only when tags are in foreign content (e.g. , , etc contexts).
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

XSS

Weakness Enumeration

CWE-20CWE-405CWE-79

Related Identifiers

ALT-PU-2025-7474
ALT-PU-2025-7475
AZL-60447
AZL-60450
AZL-60458
AZL-60459
AZL-60467
AZL-60472
AZL-60474
AZL-60479
AZL-60485
AZL-60486
AZL-60492
AZL-60502
AZL-60505
AZL-60510
AZL-60523
AZL-60528
AZL-60534
AZL-60537
AZL-60542
AZL-60545
AZL-60550
AZL-60554
AZL-60557
AZL-60565
AZL-60568
AZL-60572
AZL-60573
AZL-60580
AZL-60586
AZL-60588
AZL-60595
AZL-60601
AZL-60604
AZL-61750
AZL-61762
AZL-61812
AZL-64185
AZL-65664
AZL-65667
BDU:2025-02476
BDU:2025-08472
BDU:2025-08473
CLEANSTART-2026-CR41732
CLEANSTART-2026-EJ93145
CLEANSTART-2026-HZ73294
CLEANSTART-2026-OJ41940
CLEANSTART-2026-PY85990
CLEANSTART-2026-QW16951
CLEANSTART-2026-SQ68600
CVE-2025-22872
ECHO-D4E9-4005-DA7C
GHSA-VVGC-356P-C3XW
GO-2025-3595
OPENSUSE-SU-2025:15008-1
OPENSUSE-SU-2025:15028-1
OPENSUSE-SU-2025:15034-1
OPENSUSE-SU-2025:15036-1
OPENSUSE-SU-2025:15046-1
OPENSUSE-SU-2025:15047-1
OPENSUSE-SU-2025:15147-1
OPENSUSE-SU-2025:15171-1
OPENSUSE-SU-2025:15207-1
OPENSUSE-SU-2025:15228-1
OPENSUSE-SU-2025:15234-1
OPENSUSE-SU-2025:15235-1
OPENSUSE-SU-2025:15236-1
OPENSUSE-SU-2025:15304-1
OPENSUSE-SU-2025:15305-1
OPENSUSE-SU-2025:15454-1
OPENSUSE-SU-2025:15462-1
OPENSUSE-SU-2025:15772-1
OPENSUSE-SU-2025:15779-1
OPENSUSE-SU-2025:20117-1
OPENSUSE-SU-2025:20160-1
OPENSUSE-SU-2026:10013-1
OPENSUSE-SU-2026:10862-1
OPENSUSE-SU-2026:20058-1
OPENSUSE-SU-2026:20132-1
OPENSUSE-SU-2026:20281-1
SUSE-SU-2025:01940-1
SUSE-SU-2025:01940-2
SUSE-SU-2025:01941-1
SUSE-SU-2025:01945-1
SUSE-SU-2025:01985-1
SUSE-SU-2025:01987-1
SUSE-SU-2025:01989-1
SUSE-SU-2025:01991-1
SUSE-SU-2025:02121-1
SUSE-SU-2025:02289-1
SUSE-SU-2025:02289-2
SUSE-SU-2025:02336-1
SUSE-SU-2025:02350-1
SUSE-SU-2025:02350-2
SUSE-SU-2025:02351-1
SUSE-SU-2025:02366-1
SUSE-SU-2025:02366-2
SUSE-SU-2025:02383-1
SUSE-SU-2025:02383-2
SUSE-SU-2025:02423-2
SUSE-SU-2025:03278-1
SUSE-SU-2025:20457-1
SUSE-SU-2025:20510-1
SUSE-SU-2025:20516-1
SUSE-SU-2025:20535-1
SUSE-SU-2025:4330-1
SUSE-SU-2025_01940-2
SUSE-SU-2025_01945-1
SUSE-SU-2025_01987-1
SUSE-SU-2025_02121-1
SUSE-SU-2025_02289-1
SUSE-SU-2025_02289-2
SUSE-SU-2025_02336-1
SUSE-SU-2025_02350-1
SUSE-SU-2025_02350-2
SUSE-SU-2025_02351-1
SUSE-SU-2025_02366-1
SUSE-SU-2025_02366-2
SUSE-SU-2025_02383-1
SUSE-SU-2025_02383-2
SUSE-SU-2025_02423-2
SUSE-SU-2025_02515-1
SUSE-SU-2025_02515-2
SUSE-SU-2025_03278-1
SUSE-SU-2025_4330-1
SUSE-SU-2026:0439-1
SUSE-SU-2026:20176-1
SUSE-SU-2026:20244-1
SUSE-SU-2026:20357-1
SUSE-SU-2026:20551-1
SUSE-SU-2026:20610-1
USN-8089-1
USN-8089-2
USN-8089-3

Affected Products

Alt Linux
Debian
Linuxmint
Red Os
Suse
Ubuntu