Security Advisory

CVE-2022-50800

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-30 22:41:40

Last updated 2026-01-02 19:51:05

Assigner VulnCheck

State PUBLISHED

Description

H3C SSL VPN contains a user enumeration vulnerability that allows attackers to identify valid usernames through the txtUsrName POST parameter. Attackers can submit different usernames to the login_submit.cgi endpoint and analyze response messages to distinguish between existing and non-existing accounts.

← Browse all CVEs View on cve.org ↗