Cross-Site Scripting Vulnerability in Leviton AcquiSuite and Energy Monitoring Hub
CVE-2025-6185
Currently unrated
What is CVE-2025-6185?
Leviton AcquiSuite and Energy Monitoring Hub are affected by a cross-site scripting vulnerability. This issue occurs when an attacker is able to inject malicious scripts through URL parameters. When a user inadvertently accesses the crafted URL, the script can execute in their browser, leading to the potential theft of session tokens and unauthorized control over the affected services. This vulnerability poses significant security risks for users, highlighting the need for immediate attention and remedial measures.