Security Advisory

CVE-2025-32440

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-27 21:59:40

Last updated 2025-05-28 13:45:52

Assigner GitHub_M

State PUBLISHED

Description

NetAlertX is a network, presence scanner and alert framework. Prior to version 25.4.14, it is possible to bypass the authentication mechanism of NetAlertX to update settings without authentication. An attacker can trigger sensitive functions within util.php by sending crafted requests to /index.php. This issue has been patched in version 25.4.14.

← Browse all CVEs View on cve.org ↗