SolarWinds SWOSH DOM-based reflective XSS Vulnerability

(CVE-2025-26395)

Summary

SolarWinds SWOSH was susceptible to a cross-site scripting (XSS) vulnerability due to an unsanitized field in the URL. The attack requires authentication using an administrator-level account and user interaction is required.

Affected Products

SolarWinds SWOSH 2025.1.1 and prior versions

Fixed Software Release

SWOSH 2025.2

Acknowledgments

Shahzin Sajid, Al Sabah Salim, and Shabeer Ali from the QatarEnergyLNG SOC team

Advisory Detail

Severity

7.1 High

Advisory ID

CVE-2025-26395

First Published

06/10/2025

Fixed Version

SWOSH 2025.2

CVSS Score

CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:C/C:H/I:L/A:L