Security Advisory

CVE-2025-3495

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-16 03:10:05

Last updated 2025-08-19 00:11:36

Assigner Deltaww

State PUBLISHED

Description

Delta Electronics COMMGR v1 and v2 uses insufficiently randomized values to generate session IDs (CWE-338). An attacker could easily brute force a session ID and load and execute arbitrary code.

← Browse all CVEs View on cve.org ↗