Security Advisory

CVE-2021-22825

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-01-28 19:09:40

Last updated 2025-09-08 16:09:21

Assigner schneider

State PUBLISHED

Description

A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could allow an attacker to access the system with elevated privileges when a privileged account clicks on a malicious URL that compromises the security token. Affected Products: AP7xxxx and AP8xxx with NMC2 (V6.9.6 or earlier), AP7xxx and AP8xxx with NMC3 (V1.1.0.3 or earlier), and APDU9xxx with NMC3 (V1.0.0.28 or earlier)

← Browse all CVEs View on cve.org ↗