CVE-2025-1337

CVSS 3.1 Score 3.5 of 10 (low)

Details

Published Feb 16, 2025

CWE ID 94

CWE ID 79

Summary

CVE-2025-1337 is a newly identified vulnerability in Eastnets PaymentSafe 2.5.26.0. This issue resides within the BIC Search component and has been classified as problematic. Attackers can exploit this flaw to launch cross-site scripting attacks, enabling them to inject malicious code into a victim's web browser. Remotely initiating these attacks is feasible, making it a significant security concern. Despite early disclosure, the vendor has yet to engage in any form of response.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/2ludGA
https://www.cve.org/CVERecord?id=CVE-2025-1337
https://nvd.nist.gov/vuln/detail/CVE-2025-1337

Back to Vulnerability Database

CVE-2025-1337

CVSS 3.1 Score 3.5 of 10 (low)

Details

Summary

Advisories, Assessments, and Mitigations