Security Advisory

CVE-2025-34442

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-17 19:48:39
Last updated 2026-06-23 16:13:34
Assigner VulnCheck
State PUBLISHED

Description

AVideo versions prior to 20.1 disclose absolute filesystem paths via multiple public API endpoints. Returned metadata includes full server paths to media files, revealing underlying filesystem structure and facilitating more effective attack chains.