-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security

Vulnerability Details

Registries

Custom Views

Weaknesses

Attack Patterns

Filters & Tools

netaxis

Source -

NVD

BOS Name -

N/A

CNA CVEs -

0

ADP CVEs -

0

CISA CVEs -

0

NVD CVEs -

1

Related CVEs Related Products Related Assigners Reports

1Vulnerabilities found

Assigner-MITRE Corporation

Assigner-MITRE Corporation

CVSS Score-9.8||CRITICAL

EPSS-0.07% / 22.27%

||

7 Day CHG~0.00%

Published-17 Dec, 2025 | 00:00

Updated-05 Jan, 2026 | 15:17

Rejected-Not Available

Known To Be Used In Ransomware Campaigns?-Not Available

KEV Added-Not Available

KEV Action Due Date-Not Available

Netaxis API Orchestrator (APIO) before 0.19.3 allows server side template injection (SSTI).

Action-Not Available

Vendor-netaxis n/a

Product-api_orchestrator n/a

CWE ID-CWE-1336

Improper Neutralization of Special Elements Used in a Template Engine