Nozomi Networks Guardian and CMC Stored HTML Injection Vulnerability in Asset List Functionality

A stored HTML injection vulnerability has been identified in the Asset List feature of Nozomi Networks Guardian and CMC versions prior to 25.5.0. This vulnerability arises from inadequate validation of network traffic data, allowing an unauthenticated attacker to send specially crafted packets that inject HTML tags into asset attributes. When these assets are viewed in the Asset List or similar functions, the injected HTML is rendered in the browser. This could facilitate phishing attacks and potentially open redirect vulnerabilities. However, full exploitation of cross-site scripting (XSS) and direct information disclosure is mitigated by existing input validation and Content Security Policy settings.

Impact

Exploitation of this vulnerability allows for stored HTML injection, which is rendered in the context of the user viewing the Asset List. This could be used for phishing attacks or open redirect vulnerabilities. While the injection could typically lead to cross-site scripting (XSS) exploitation, such exploitation is currently blocked by input validation and Content Security Policy configurations.

Remediation

Users are advised to upgrade to version 25.5.0 or later.