Security Advisory

CVE-2025-27803

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-21 11:29:15

Last updated 2025-11-03 19:46:28

Assigner SEC-VLab

State PUBLISHED

Description

The devices do not implement any authentication for the web interface or the MQTT server. An attacker who has network access to the device immediately gets administrative access to the devices and can perform arbitrary administrative actions and reconfigure the devices or potentially gain access to sensitive data.

← Browse all CVEs View on cve.org ↗