Security Advisory

CVE-2023-25550

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-04-18 20:36:30

Last updated 2025-02-12 16:00:58

Assigner schneider

State PUBLISHED

Description

A CWE-94: Improper Control of Generation of Code (Code Injection) vulnerability exists that allows remote code execution via the “hostname” parameter when maliciously crafted hostname syntax is entered. Affected products: StruxureWare Data Center Expert (V7.9.2 and prior)

← Browse all CVEs View on cve.org ↗