Security Advisory

CVE-2025-35115

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-26 22:18:30

Last updated 2025-08-29 18:27:45

Assigner cisa-cg

State PUBLISHED

Description

Agiloft Release 28 downloads critical system packages over an insecure HTTP connection. An attacker in a Man-In-the-Middle position could replace or modify the contents of the download URL. Users should upgrade to Agiloft Release 30.

← Browse all CVEs View on cve.org ↗