{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-20T02:01:22.155","vulnerabilities":[{"cve":{"id":"CVE-2025-46320","sourceIdentifier":"product-security@apple.com","published":"2026-02-24T21:16:18.447","lastModified":"2026-02-25T16:47:08.160","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"A cross-site scripting (XSS) vulnerability in a FileMaker WebDirect custom homepage could lead to unauthorized access and remote code execution. This vulnerability has been fully addressed in FileMaker Server 22.0.4 and FileMaker Server 21.1.7."},{"lang":"es","value":"Una vulnerabilidad de cross-site scripting (XSS) en una página de inicio personalizada de FileMaker WebDirect podría conducir a acceso no autorizado y ejecución remota de código. Esta vulnerabilidad ha sido completamente abordada en FileMaker Server 22.0.4 y FileMaker Server 21.1.7."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:claris:filemaker_server:*:*:*:*:*:*:*:*","versionEndExcluding":"21.1.7","matchCriteriaId":"DB397CD0-E452-4757-B9CB-B048CB24C7AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:claris:filemaker_server:*:*:*:*:*:*:*:*","versionStartIncluding":"22.0.1","versionEndExcluding":"22.0.4","matchCriteriaId":"5CFFD35F-3EE6-45FF-9B5C-2F58D831AF69"}]}]}],"references":[{"url":"https://support.claris.com/s/answerview?anum=000049123&language=en_US","source":"product-security@apple.com","tags":["Vendor Advisory"]}]}}]}