Security Advisory

CVE-2023-25555

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-04-18 20:39:14

Last updated 2025-02-05 21:39:36

Assigner schneider

State PUBLISHED

Description

A CWE-78: Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) vulnerability exists that could allow a user that knows the credentials to execute unprivileged shell commands on the appliance over SSH. Affected products: StruxureWare Data Center Expert (V7.9.2 and prior)

← Browse all CVEs View on cve.org ↗