CVE-2025-68723

Axigen Mail Server before 10.5.57 contains multiple stored Cross-Site Scripting (XSS) vulnerabilities in the WebAdmin interface. Three instances exist: (1) the log file name parameter in the Local Services Log page, (2) certificate file content in the SSL Certificates View Usage feature, and (3) the Certificate File name parameter in the WebMail Listeners SSL settings. Attackers can inject malicious JavaScript payloads that execute in administrators' browsers when they access affected pages or features, enabling privilege escalation attacks where low-privileged admins can force high-privileged admins to perform unauthorized actions.

CVSS v3 9.0 CRITICAL

9.0^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 2.3 / Impact : 6.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://www.axigen.com/knowledgebase/Axigen-WebAdmin-Stored-XSS-Vulnerabilities-CVE-2025-68723-_408.html	Vendor Advisory
https://www.axigen.com/mail-server/download/	Product
https://github.com/osmancanvural/CVE-2025-68723

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:axigen:axigen_mail_server::::::::
	cpe:2.3:a:axigen:axigen_mail_server::::::::

History

No history.

Information

Published : 2026-02-05 17:16

Updated : 2026-02-13 15:15

NVD link : CVE-2025-68723

Mitre link : CVE-2025-68723

CVE.ORG link : CVE-2025-68723

JSON object : View

Products Affected

axigen

axigen_mail_server

CWE

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

{"id": "CVE-2025-68723", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.0, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 2.3}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.0, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 2.3}]}, "published": "2026-02-05T17:16:12.700", "references": [{"url": "https://www.axigen.com/knowledgebase/Axigen-WebAdmin-Stored-XSS-Vulnerabilities-CVE-2025-68723-_408.html", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.axigen.com/mail-server/download/", "tags": ["Product"], "source": "cve@mitre.org"}, {"url": "https://github.com/osmancanvural/CVE-2025-68723", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-79"}]}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "Axigen Mail Server before 10.5.57 contains multiple stored Cross-Site Scripting (XSS) vulnerabilities in the WebAdmin interface. Three instances exist: (1) the log file name parameter in the Local Services Log page, (2) certificate file content in the SSL Certificates View Usage feature, and (3) the Certificate File name parameter in the WebMail Listeners SSL settings. Attackers can inject malicious JavaScript payloads that execute in administrators' browsers when they access affected pages or features, enabling privilege escalation attacks where low-privileged admins can force high-privileged admins to perform unauthorized actions."}, {"lang": "es", "value": "Axigen Mail Server anterior a 10.5.57 contiene m\u00faltiples vulnerabilidades de cross-site scripting (XSS) almacenado en la interfaz WebAdmin. Existen tres instancias: (1) el par\u00e1metro del nombre del archivo de registro en la p\u00e1gina de registro de servicios locales (Local Services Log), (2) el contenido del archivo de certificado en la funci\u00f3n de visualizaci\u00f3n de uso de certificados SSL (SSL Certificates View Usage), y (3) el par\u00e1metro del nombre del archivo de certificado en la configuraci\u00f3n SSL de los oyentes de WebMail (WebMail Listeners). Los atacantes pueden inyectar cargas \u00fatiles de JavaScript maliciosas que se ejecutan en los navegadores de los administradores cuando acceden a las p\u00e1ginas o funciones afectadas, lo que permite ataques de escalada de privilegios donde los administradores con pocos privilegios pueden obligar a los administradores con muchos privilegios a realizar acciones no autorizadas."}], "lastModified": "2026-02-13T15:15:57.503", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:axigen:axigen_mail_server:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7FD23438-2B7F-48CB-9300-2A47F2B96A01", "versionEndExcluding": "10.5.57", "versionStartIncluding": "10.3.0"}, {"criteria": "cpe:2.3:a:axigen:axigen_mail_server:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5FE47CA3-597B-45EE-BCFA-60440CDB5ECB", "versionEndExcluding": "10.6.26", "versionStartIncluding": "10.6.0"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}