CVE-2025-54057
published 2025-11-27CVE-2025-54057: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Apache SkyWalking. This issue affects Apache SkyWalking: <=…
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Apache SkyWalking.
This issue affects Apache SkyWalking: <= 10.2.0.
Users are recommended to upgrade to version 10.3.0, which fixes the issue.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | skywalking | < 10.3.0 | 10.3.0 |
| apache_software_foundation | apache_skywalking | <= 10.2.0 | — |