A security vulnerability has been detected in AllStarLink Supermon up to 6.2. This vulnerability affects unknown code of the component AllMon2. The manipulation leads to cross-site scripting. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond. This vulnerability only affects products that are no longer supported.
CVE-2025-11278
🟡 Medium
CVE-2025-11278: Security vulnerability in AllStarLink Supermon
A security vulnerability in AllStarLink Supermon up to version 6.2 allows for remote cross-site scripting attacks. Products no longer supported are affected.
CVE ID
CVE-2025-11278
CVSS Score
4.3
Vendor
unknown
Published
Oct 05
Vulnerability Details
- CVE ID
- CVE-2025-11278
- Severity
- Medium
- CVSS v3 Score
- 4.3 / 10.0
- Affected Vendor
- unknown
- Publication Date
- October 05, 2025
External Resources
Need Help?
Protect your infrastructure with our comprehensive security scanning tools.
Explore Security Scanners