CVE-2025-62198

MEDIUM 5.4

Apache Atlas: Stored XSS in Create Entity page

CVSS Score

5.4

EPSS Score

0.0%

EPSS Percentile

0th

An authenticated user can perform XSS. This issue affects Apache Atlas versions 2.4.0 and earlier. Users are recommended to upgrade to version 2.5.0, which fixes the issue.

CWE	CWE-80
Vendor	apache software foundation
Product	apache atlas
Published	Jun 22, 2026
Last Updated	Jun 22, 2026

Stay Ahead of the Next One

Get instant alerts for apache software foundation apache atlas

Be the first to know when new medium vulnerabilities affecting apache software foundation apache atlas are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Apache Software Foundation / Apache Atlas

0 ≤ 2.4.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

lists.apache.org: https://lists.apache.org/thread/nv893lhz3ok08f25j3v4z1to5nrpdp7k openwall.com: http://www.openwall.com/lists/oss-security/2026/06/20/1

Credits

Grzegorz Misiun