Security Advisory

CVE-2020-37153

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-11 20:49:48

Last updated 2026-03-05 01:28:17

Assigner VulnCheck

State PUBLISHED

Description

ASTPP 4.0.1 contains multiple vulnerabilities including cross-site scripting and command injection in SIP device configuration and plugin management interfaces. Attackers can exploit these flaws to inject system commands, hijack administrator sessions, and potentially execute arbitrary code with root permissions through cron task manipulation.

← Browse all CVEs View on cve.org ↗