Products
Government
Resources
Community
Company
Partners
Sign In / Join
Sign In
Advisories
CONPROSYS HMI System (CHS) < 3.7.7 Reflected Cross-Site Scripting
Go Back
severity
medium
date
July 1, 2025
Affecting
CHS < 3.7.7
CVE
CVE-2025-34080
CWE
CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
CVSS
5.1
CVSS V4 Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N
References
JPCERT/CC Advisory
Credit
Alex Williams of Converge Technology Solutions