CVE Daily

CVE-2025-47189

Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162...

Medium CVSS 6.1

Overview

Netwrix Directory Manager (formerly Imanami GroupID) 11.0.0.0 before 11.1.25162.02 allows XSS for authentication error data of certain user flows, a different vulnerability than CVE-2025-54392.

CWE: CWE-79 Published: 2025-07-17T15:15:25.827
Risk analysis

This vulnerability is rated 🟡 MEDIUM.

  • CVSS: 6.1 (MEDIUM)
  • Detected tags: xss (tag impact: MODERATE)

Recommended actions:

  • Apply context-aware output encoding.
  • Enable Content-Security-Policy and HttpOnly/SameSite cookies.

Recommended tools

Tags