Medium severityNVD Advisory· Published Jun 26, 2025· Updated Apr 15, 2026
CVE-2025-53122
CVE-2025-53122
Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in OpenNMS Horizon and Meridian applications allows SQL Injection.
Users should upgrade to Meridian 2024.2.6 or newer, or Horizon 33.16 or newer. Meridian and Horizon installation instructions state that they are intended for installation within an organization's private networks and should not be directly accessible from the Internet.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <2024.2.6
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.