CVE-2025-8765 | THREATINT

Description

A vulnerability classified as problematic was found in Datacom DM955 5GT 1200 825.8010.00. Affected by this vulnerability is an unknown functionality of the component Wireless Basic Settings. The manipulation of the argument SSID leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

In Datacom DM955 5GT 1200 825.8010.00 wurde eine problematische Schwachstelle entdeckt. Betroffen ist eine unbekannte Verarbeitung der Komponente Wireless Basic Settings. Durch die Manipulation des Arguments SSID mit unbekannten Daten kann eine cross site scripting-Schwachstelle ausgenutzt werden. Der Angriff kann über das Netzwerk passieren. Der Exploit steht zur öffentlichen Verfügung.

PUBLISHED Reserved 2025-08-08 | Published 2025-08-09 | Updated 2025-08-12 | Assigner VulDB

MEDIUM: 5.1CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P

LOW: 3.5CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N/E:P/RL:X/RC:R

LOW: 3.5CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N/E:P/RL:X/RC:R

4.0AV:N/AC:L/Au:S/C:N/I:P/A:N/E:POC/RL:ND/RC:UR

Problem types

Cross Site Scripting

Code Injection

Product status

825.8010.00

affected

Timeline

2025-08-08:	Advisory disclosed
2025-08-08:	VulDB entry created
2025-08-08:	VulDB entry last update

Credits

Fergod (VulDB User) reporter

References

vuldb.com/?id.319267 (VDB-319267 | Datacom DM955 5GT 1200 Wireless Basic Settings cross site scripting) vdb-entry technical-description

vuldb.com/?ctiid.319267 (VDB-319267 | CTI Indicators (IOB, IOC, TTP, IOA)) signature permissions-required

vuldb.com/?submit.624545 (Submit #624545 | Datacom DM955 5GT 1200 825.8010.00 Cross Site Scripting) third-party-advisory

cve.org (CVE-2025-8765)

nvd.nist.gov (CVE-2025-8765)

Download JSON