CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-67787

An issue was discovered in 25.1.2 before 25.1.5. A Cross Site Scripting (XSS) issue in DriveLock Operations Center allows for session takeover over a network.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 13.4%

CVSS Severity

CVSS v3 Score 9.6

References

https://drivelock.help/versions/current/web/en/releasenotes/Content/ReleaseNotes_DriveLock/SecurityBulletins/25-002-CrossSiteScripting.htm

Products affected by CVE-2025-67787

Drivelock » Drivelock » Version: 25.1.2

cpe:2.3:a:drivelock:drivelock:25.1.2
Drivelock » Drivelock » Version: 25.1.4

cpe:2.3:a:drivelock:drivelock:25.1.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-67787

Products

Pricing

Contact Us