Guardian

This hub aggregates every CVE we track for Guardian, a product in the security products space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Guardian.

• CVE-2026-22674Hashgraph Guardian Stored XSS via branding companyName field4.8Jun 18, 2026
• CVE-2025-40904HTML injection in Smart Polling in Guardian/CMC before 26.1.06.5May 19, 2026
• CVE-2025-40903HTML injection in Schedule Restore Archive in Guardian/CMC before 26.1.05.9May 19, 2026
• CVE-2025-40902HTML injection in Users in Guardian/CMC before 26.1.05.9May 19, 2026
• CVE-2025-40901HTML injection in Credentials Manager in Guardian/CMC before 26.1.05.9May 19, 2026
• CVE-2025-40900Angular template injection in Reports in Guardian/CMC before 26.1.04.6May 19, 2026
• CVE-2026-45248Hedera Guardian Authentication Bypass Information Disclosure5.3May 14, 2026
• CVE-2025-40899Stored Cross-Site Scripting (XSS) in Assets and Nodes in Guardian/CMC before 26.0.08.9Apr 15, 2026
• CVE-2025-40897Incorrect authorization for Threat Intelligence in Guardian/CMC before 26.0.08.1Apr 15, 2026
• CVE-2026-39911Hashgraph Guardian 3.5.1 Unsandboxed JavaScript Execution RCE8.8Apr 9, 2026
• CVE-2025-40894HTML injection in Alerted Nodes Dashboard in Guardian/CMC before 25.6.04.4Mar 4, 2026
• CVE-2025-40898Path traversal in Import Arc data archive functionality in Guardian/CMC before 25.5.08.1Dec 18, 2025
• CVE-2025-40893HTML injection in Asset List in Guardian/CMC before 25.5.06.1Dec 18, 2025
• CVE-2025-40892Stored Cross-Site Scripting (XSS) in Reports in Guardian/CMC before 25.5.08.9Dec 18, 2025
• CVE-2025-40891HTML injection in in Time Machine functionality in Guardian/CMC before 25.5.04.7Dec 18, 2025