Medium severity4.7NVD Advisory· Published Dec 18, 2025· Updated Apr 14, 2026

CVE-2025-40891

Description

A Stored HTML Injection vulnerability was discovered in the Time Machine Snapshot Diff functionality due to improper validation of network traffic data. An unauthenticated attacker can send specially crafted network packets at two different times to inject HTML tags into asset attributes across two snapshots. Exploitation requires a victim to use the Time Machine Snapshot Diff feature on those specific snapshots and perform specific GUI actions, at which point the injected HTML renders in their browser, enabling phishing and open redirect attacks. Full XSS exploitation is prevented by input validation and Content Security Policy. Attack complexity is high due to multiple required conditions.

Affected products

Nozominetworks/Cmc
cpe:2.3:a:nozominetworks:cmc:*:*:*:*:*:*:*:*
Range: <25.5.0
Nozominetworks/Guardian
cpe:2.3:a:nozominetworks:guardian:*:*:*:*:*:*:*:*
Range: <25.5.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

security.nozominetworks.com/NN-2025:12-01nvdVendor Advisory
cert-portal.siemens.com/productcert/html/ssa-827968.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.306
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000