CVE-2025-58405
Lack of protection mechanisms against Clickjacking attacks
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
The CGM CLININET application does not implement any mechanisms that prevent clickjacking attacks, neither HTTP security headers nor HTML-based frame‑busting protections were detected. As a result, an attacker can embed the application inside a maliciously crafted IFRAME and trick users into performing unintended actions, including potentially bypassing CSRF/XSRF defenses.
| CWE | CWE-1021 |
| Vendor | cgm |
| Product | cgm clininet |
| Published | Mar 2, 2026 |
| Last Updated | Mar 2, 2026 |
Stay Ahead of the Next One
Get instant alerts for cgm cgm clininet
Be the first to know when new unknown vulnerabilities affecting cgm cgm clininet are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
Affected Versions
CGM / CGM CLININET
0 < 2025.MS3