Primary

Context

SelectZero Data Observability Platform Content Spoofing Vulnerability

Vulnerability

A content spoofing vulnerability allowing text injection has been identified in the SelectZero Data Observability Platform, affecting versions prior to 2025.5.2. The issue arises from improper sanitization of certain parameters, which enables attackers to inject arbitrary text or limited HTML into the login page.

Impact

Exploitation of this vulnerability allows for content spoofing, where injected text or HTML could mislead users or alter the appearance of the login page.

Remediation

Users can update to SelectZero Data Observability Platform version 2025.5.2 or later to address this vulnerability.

Added: Aug 26, 2025, 3:19 PM

Updated: Aug 26, 2025, 3:19 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.4

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.4

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SelectZero Data Observability Platform Content Spoofing Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating