CVE-2025-52217

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

26/08/2025

Last modified:

26/08/2025

Description

SelectZero Data Observability Platform before 2025.5.2 is vulnerable to HTML Injection. Legacy UI fields improperly handle user-supplied input, allowing injection of arbitrary HTML.

Impact

References to Advisories, Solutions, and Tools

https://selectzero.io/change-log/