CVE-2025-41010 | Hiberus Sintra Configuration cross-domain policy

October 2, 2025 Yanac

A vulnerability described as problematic has been identified in Hiberus Sintra. This affects an unknown function of the component Configuration Handler. The manipulation results in permissive cross-domain policy with untrusted domains.

This vulnerability is known as CVE-2025-41010. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More

CVE-2025-11240 | KNIME Business Hub up to 1.15.x redirect
CVE-2024-58260 | SUSE Rancher up to 2.9.11/2.10.9/2.11.5/2.12.1 Username authorization (GHSA-q82v-h4rq-5c86)