Security Advisory

CVE-2025-35057

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-09 20:21:29
Last updated 2025-10-10 19:33:12
Assigner cisa-cg
State PUBLISHED

Description

Newforma Info Exchange (NIX) /RemoteWeb/IntegrationServices.ashx allows a remote, unauthenticated attacker to cause NIX to make an SMB connection to an attacker-controlled system. The attacker can capture the NTLMv2 hash of the NIX service account.