Cross-site Scripting Vulnerability in Dolby UK Mobile Smart
CVE-2025-31021

7.1HIGH

Key Information:

Vendor: Dolby Uk
Status: Mobile Smart
Vendor: CVE Published:; 11 April 2025

What is CVE-2025-31021?

The Dolby UK Mobile Smart product has a vulnerability that allows attackers to exploit improperly sanitized input during web page generation, leading to reflected cross-site scripting (XSS). This security flaw can potentially allow malicious scripts to be executed in users' browsers, compromising user data and session integrity. Affected versions include all prior to 1.3.16. It is essential for users and administrators to patch this vulnerability to enhance their web security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Mobile Smart <= n/a

References

https://patchstack.com/database/wordpress/plugin/mobile-s...

vdb-entry

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Apr 11, 2025
Vulnerability Reserved
Mar 26, 2025

Credit

Nguyen Thi Huyen Trang - Skalucy (Patchstack Alliance)

JSON

Dolby Uk