CVE-2025-27380 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

HTML injection in Project Release in Altium Enterprise Server (AES) 7.0.3 on all platforms allows an authenticated attacker to execute arbitrary JavaScript in t…
High CVSS: 7.6

CVE-2025-27380

HTML injection in Project Release in Altium Enterprise Server (AES) 7.0.3 on all platforms allows an authenticated attacker to execute arbitrary JavaScript in the victim’s browser via crafted HTML content.
Vendor
Altium
Product
On-prem Enterprise Server
CWE
CWE-79
Yayın Tarihi
2026-01-22 02:15:51
Güncelleme
2026-02-26 21:23:01
Source Identifier
4760f414-e1ae-4ff1-bdad-c7a9c3538b79
KEV Date Added
-

Kategoriler

CWE-79 On-prem Enterprise Server HIGH Altium 2026

Referanslar

https://www.altium.com/platform/security-compliance/security-advisories