CVE-2025-0785

Name of the Vulnerable Software and Affected Versions ESAFENET CDG version V5

Description A vulnerability was found in the processing of the file /SysConfig.jsp, which can lead to cross-site scripting when the help argument is manipulated. This issue can be exploited remotely. The exploit has been disclosed to the public.

Recommendations For ESAFENET CDG version V5, as a temporary workaround, consider restricting access to the /SysConfig.jsp file until a patch is available. Avoid using the help argument in the /SysConfig.jsp file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.