Primary

Context

Orban Optimod Products Stored Cross-Site Scripting Vulnerability

Vulnerability

A stored cross-site scripting vulnerability has been identified in multiple Orban Optimod products, including the Optimod 5950, 5950HD, 5750, 5750HD, and Trio, all running version 1.0.0.33 - System version 2.5.26. This vulnerability allows remote attackers to execute arbitrary JavaScript in the web browser of a user. The exploitation involves injecting a malicious payload into the logs, which is then rendered in the user interface.

Impact

Exploitation of this vulnerability allows for stored cross-site scripting, where injected scripts are executed in the context of the user viewing the logs.

Added: Oct 6, 2025, 2:17 PM

Updated: Oct 6, 2025, 3:32 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.7

exploitability

6.4

remediation

0.0

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.7

exploitability

6.4

remediation

0.0

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Orban Optimod Products Stored Cross-Site Scripting Vulnerability

Vulnerability

Impact

Affected Products

Orban Optimod 5950

Orban Optimod 5950HD

Orban Optimod 5750

Orban Optimod 5750HD

Orban Optimod Trio

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating