Vulnerability Details CVE-2025-65231
Barix Instreamer v04.06 and earlier is vulnerable to Cross Site Scripting (XSS) in the Web UI I/O & Serial configuration page, specifically the CTS close command user-input field which is stored and later rendered on the Status page.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 8.6%
CVSS Severity
CVSS v3 Score 6.1
References
Products affected by CVE-2025-65231
-
cpe:2.3:h:barix:instreamer:-
-
cpe:2.3:o:barix:instreamer_firmware:*