2
0
2
0
Vulnerability Timeline
2 vulnerabilities discovered over time for Cmc
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2025-40895 | 2.0 | This vulnerability allows a malicious user with admin access to a connected Guardian to inject harmful HTML into the CMC's Sensor Map feature, which could trick other users into clicking on phishing links. However, this can only happen if the Sensor Map is enabled, and the attack is limited because existing security measures prevent more serious exploits like full account takeover or data theft. | nozominetworkscmc | Exploit Available | about 1 month agoMar 4, 2026 |
| CVE-2025-40894 | 2.1 | This vulnerability allows a malicious user with the right permissions to inject harmful HTML into a node label, which could then be displayed to other users in the Alerted Nodes Dashboard. While the risk of full exploitation is limited by existing security measures, it could still lead to phishing attempts or redirecting users to malicious sites if they interact with the affected alerts. | nozominetworkscmc | Exploit Available | about 1 month agoMar 4, 2026 |
About Nozominetworks Cmc Security
This page provides comprehensive security vulnerability tracking for Nozominetworks Cmc. Our database includes all CVEs affecting this product, updated in real-time from official sources.
Each vulnerability listing includes detailed CVSS severity analysis, exploit availability status, AI-generated explanations, and direct links to official security patches and vendor advisories.
Security Recommendations
- • Always keep Cmc updated to the latest version
- • Subscribe to security advisories from Nozominetworks
- • Monitor this page for new vulnerabilities affecting your version
- • Prioritize patching critical and high severity issues immediately