Security Advisory

CVE-2023-25554

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-04-18 20:34:40

Last updated 2025-02-12 16:00:38

Assigner schneider

State PUBLISHED

Description

A CWE-78: Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) vulnerability exists that allows a local privilege escalation on the appliance when a maliciously crafted Operating System command is entered on the device. Affected products: StruxureWare Data Center Expert (V7.9.2 and prior)

← Browse all CVEs View on cve.org ↗