Security Advisory

CVE-2025-10227

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-10 12:39:12

Last updated 2025-10-08 11:57:58

Assigner AxxonSoft

State PUBLISHED

Description

Missing Encryption of Sensitive Data (CWE-311) in the Object Archive component in AxxonSoft Axxon One (C-Werk) before 2.0.8 on Windows and Linux allows a local attacker with access to exported storage or stolen physical drives to extract sensitive archive data in plaintext via lack of encryption at rest.

← Browse all CVEs View on cve.org ↗