216.73.217.98

CVE-2025-58406

· Published 02/03/2026 12:16 · Modified 02/03/2026 20:29

Labels: CVE-2025-58406 2026-03-02CVE-2025-58406CWE-693[email protected]

Essential information

Published
02/03/2026 12:16
Modified
02/03/2026 20:29
Author
Creator
CVSS
5.3 MEDIUM (v3) 5.3 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

The CGM CLININET application respond without essential security HTTP headers, exposing users to client‑side attacks such as clickjacking, MIME sniffing, unsafe caching, weak cross‑origin isolation, and missing transport security controls.

NVD status

Status
Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
cgm / clininet cpe:2.3:a:cgm:clininet:*:*:*:*:*:*:*:*

References