Security ID : QSA-25-27
Vulnerability in License Center
Release date : August 29, 2025
CVE identifier : CVE-2025-22483
Affected products: License Center 1.8.x, 1.9.x
Severity
Important
Status
Resolved
Summary
A cross-site scripting (XSS) vulnerability has been reported to affect License Center. If a remote attacker gains access to an administrator account, they can then exploit the vulnerability to bypass security mechanisms or read application data.
We have already fixed the vulnerability in the following versions:
| Affected Product | Fixed Version |
| License Center 1.8.x | License Center 1.8.51 and later |
| License Center 1.9.x | License Center 1.9.51 and later |
Recommendation
To fix the vulnerability, we recommend updating License Center to the latest version.
Updating License Center
- Log on to QTS or QuTS hero as an administrator.
- Open App Center and then click
.
A search box appears. - Type "License Center" and then press ENTER.
License Center appears in the search results. - Click Update.
A confirmation message appears.
Note: The Update button is not available if your License Center is already up to date. - Click OK.
The system updates the application.
Attachment
Acknowledgements: Milan Solanki (LeoSecurity)
Revision History:
V1.0 (August 29, 2025) - Published
