CVE-2025-67833
MEDIUMPaessler PRTG Network Monitor < 25.4.114.1032 - Unauthenticated Cross-Site Scripting via Tag Parameter
Title source: llmDescription
Paessler PRTG Network Monitor before 25.4.114 allows XSS by an unauthenticated attacker via the tag parameter.
References (2)
Core 2
Core References
Vendor Advisory
https://helpdesk.paessler.com/en/support/solutions/articles/76000087289-vulnerabilities-in-prtg-prior-v25-4-114-1032
Product
https://paessler.com
Scores
CVSS v3
6.1
EPSS
0.0022
EPSS Percentile
12.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-79
Status
published
Products (1)
paessler/prtg_network_monitor
< 25.4.114.1032
Published
Jan 14, 2026
Tracked Since
Feb 18, 2026