216.73.217.42

CVE-2025-47977

· Published 10/06/2025 17:24 · Modified 10/06/2025 17:24

Labels: CVE-2025-47977 2025-06-10CVE-2025-47977CWE-79[email protected]

Essential information

Published
10/06/2025 17:24
Modified
10/06/2025 17:24
Author
Creator
CVSS
7.6 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N

CVSS metrics

Description

Improper neutralization of input during web page generation ('cross-site scripting') in Nuance Digital Engagement Platform allows an authorized attacker to perform spoofing over a network.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
nuance / digital engagement platform cpe:2.3:a:nuance:digital_engagement_platform:*:*:*:*:*:*:*:*

References