CVE-2025-70545

{"id": "CVE-2025-70545", "cveTags": [], "metrics": {}, "published": "2026-02-04T16:16:18.510", "references": [{"url": "http://ppc.com", "source": "cve@mitre.org"}, {"url": "https://github.com/jeyabalaji711/CVE-2025-70545", "source": "cve@mitre.org"}], "vulnStatus": "Awaiting Analysis", "descriptions": [{"lang": "en", "value": "A stored cross-site scripting (XSS) vulnerability exists in the web management interface of the PPC (Belden) ONT 2K05X router running firmware v1.1.9_206L. The Common Gateway Interface (CGI) component improperly handles user-supplied input, allowing a remote, unauthenticated attacker to inject arbitrary JavaScript that is persistently stored and executed when the affected interface is accessed."}], "lastModified": "2026-02-04T16:33:44.537", "sourceIdentifier": "cve@mitre.org"}