Security Advisory

CVE-2025-26409

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-02-11 09:15:30

Last updated 2025-11-03 21:12:51

Assigner SEC-VLab

State PUBLISHED

Description

A serial interface can be accessed with physical access to the PCB of Wattsense Bridge devices. After connecting to the interface, access to the bootloader is possible, as well as a Linux login prompt. The bootloader access can be used to gain a root shell on the device. This issue is fixed in recent firmware versions BSP >= 6.4.1.

← Browse all CVEs View on cve.org ↗