Security Advisory

CVE-2025-24346

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-30 11:39:42
Last updated 2026-02-26 18:27:53
Assigner bosch
State PUBLISHED

Description

A vulnerability in the “Proxy” functionality of the web application of ctrlX OS allows a remote authenticated (lowprivileged) attacker to manipulate the “/etc/environment” file via a crafted HTTP request.