Medium severityNVD Advisory· Published Sep 17, 2025· Updated Jun 17, 2026
CVE-2025-8153
CVE-2025-8153
Description
Cross-site Scripting vulnerability in NEC Corporation UNIVERGE IX from Ver.9.5 to Ver.10.7, from Ver.10.8.21 to Ver.10.8.36, from Ver.10.9.11 to Ver.10.9.24, from Ver.10.10.21 to Ver.10.10.31, Ver.10.11.6 and UNIVERGE IX-R/IX-V Ver1.3.16, Ver1.3.21 allows a attacker to inject an arbitrary scripts may be executed on the user's browser.
Affected products
2- Range: 9.5 - 10.7, 10.8.21 - 10.8.36, 10.9.11 - 10.9.24, 10.10.21 - 10.10.31, 10.11.6
- Range: 1.3.16, 1.3.21
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.