Security Advisory

CVE-2025-23237

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-22 05:50:14

Last updated 2025-02-12 20:41:22

Assigner jpcert

State PUBLISHED

Description

Improper neutralization of special elements used in an OS command (OS Command Injection) issue exists in UD-LT2 firmware Ver.1.00.008_SE and earlier. If a user logs in to CLI of the affected product, an arbitrary OS command may be executed.

← Browse all CVEs View on cve.org ↗