Security Advisory

CVE-2025-10546

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-16 12:18:58
Last updated 2025-09-16 18:25:22
Assigner CERT-In
State PUBLISHED

Description

This vulnerability exist in PPC 2K15X Router, due to improper input validation for the Common Gateway Interface (CGI) parameters at its web management portal. A remote attacker could exploit this vulnerability by injecting malicious JavaScript into the vulnerable parameter, leading to a reflected Cross-Site Scripting (XSS) attack on the targeted system.