CVE-2025-40900

4.6 MEDIUM

An Angular template injection vulnerability was discovered in the Reports functionality due to improper validation of an input parameter

Published: 2026-05-19 · Last updated: 2026-06-09

Severity and scoring

CVSS: 4.6 MEDIUM
Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L
CWE: CWE-1336

Affected products

Vendor	Product
nozominetworks	cmc, guardian

Description

An Angular template injection vulnerability was discovered in the Reports functionality due to improper validation of an input parameter. An authenticated user with report privileges can define a malicious report containing an Angular template payload, or a victim can be socially engineered to import a malicious report template. When the victim views or imports the report, the Angular template executes in their browser context, allowing the attacker to modify application data, or disrupt application availability. Full XSS exploitation and direct information disclosure are prevented by the existing input validation and Content Security Policy configuration.

Source: NVD

References

[NVD]https://nvd.nist.gov/vuln/detail/CVE-2025-40900
[Vendor advisory]https://security.nozominetworks.com/NN-2026:3-01
[Other]https://cert-portal.siemens.com/productcert/html/ssa-827968.html

Related CVEs

Same vendor

CVE-2025-40904 — A Stored HTML Injection vulnerability was discovered in the Smart Polling functionality due to improper validation of an input parameter (6.5 MEDIUM)
CVE-2025-40903 — A Stored HTML Injection vulnerability was discovered in the Schedule Restore Archive functionality due to improper validation of an input... (5.9 MEDIUM)
CVE-2025-40902 — A Stored HTML Injection vulnerability was discovered in the Users functionality due to improper validation of an input parameter (5.9 MEDIUM)
CVE-2025-40901 — A Stored HTML Injection vulnerability was discovered in the Credentials Manager functionality due to improper validation of an input para... (5.9 MEDIUM)

Same CWE

CVE-2026-41065 — Tautulli is a Python based monitoring and tracking tool for Plex Media Server
CVE-2026-34906 — Server-Side Template Injection (SSTI) in Wirtualna Uczelnia allows an unauthenticated attacker to perform Remote Code Execution (RCE)
CVE-2026-42252 — Apache Airflow's official documentation at `core-concepts/dag-run.html` ("Passing Parameters when triggering Dags") showed a verbatim `Ba... (9.1 CRITICAL)
CVE-2026-45697 — Formie is a Craft CMS plugin for creating forms (9.8 CRITICAL)
CVE-2026-49382 — In JetBrains IntelliJ IDEA before 2026.1 code execution was possible via template injection in the Copyright plugin (4.5 MEDIUM)