CVE-2025-40903

5.9 MEDIUM

A Stored HTML Injection vulnerability was discovered in the Schedule Restore Archive functionality due to improper validation of an input...

Published: 2026-05-19 · Last updated: 2026-06-09

Severity and scoring

CVSS: 5.9 MEDIUM
Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L
CWE: CWE-79

Affected products

Vendor	Product
nozominetworks	cmc, guardian

Description

A Stored HTML Injection vulnerability was discovered in the Schedule Restore Archive functionality due to improper validation of an input parameter. An authenticated user with administrative privileges can define a malicious restore schedule containing HTML tags. When a victim views the affected schedule, the injected HTML renders in their browser, enabling phishing and possibly open redirect attacks. Full XSS exploitation and direct information disclosure are prevented by the existing input validation and Content Security Policy configuration.

Source: NVD

References

[NVD]https://nvd.nist.gov/vuln/detail/CVE-2025-40903
[Vendor advisory]https://security.nozominetworks.com/NN-2026:6-01
[Other]https://cert-portal.siemens.com/productcert/html/ssa-827968.html

Related CVEs

Same vendor

CVE-2025-40904 — A Stored HTML Injection vulnerability was discovered in the Smart Polling functionality due to improper validation of an input parameter (6.5 MEDIUM)
CVE-2025-40902 — A Stored HTML Injection vulnerability was discovered in the Users functionality due to improper validation of an input parameter (5.9 MEDIUM)
CVE-2025-40901 — A Stored HTML Injection vulnerability was discovered in the Credentials Manager functionality due to improper validation of an input para... (5.9 MEDIUM)
CVE-2025-40900 — An Angular template injection vulnerability was discovered in the Reports functionality due to improper validation of an input parameter (4.6 MEDIUM)

Same CWE

CVE-2026-12425 — Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in PowerSchool Employee Access ...
CVE-2024-30476 — PowerStore contains a Stored Cross-Site Scripting Vulnerability in the PowerStore Manager (5.4 MEDIUM)
CVE-2026-54198 — Unauthenticated Cross Site Scripting (XSS) in Media LIbrary Assistant <= 3.35 versions (7.1 HIGH)
CVE-2026-54191 — Unauthenticated Cross Site Scripting (XSS) in Pods <= 3.3.8 versions (7.1 HIGH)
CVE-2026-39437 — Unauthenticated Cross Site Scripting (XSS) in Min Max Step Quantity Limits Manager for WooCommerce <= 5.2.2 versions (7.1 HIGH)