Security Advisory
CVE-2025-40598
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
A Reflected cross-site scripting (XSS) vulnerability exists in the SMA100 series web interface, allowing a remote unauthenticated attacker to potentially execute arbitrary JavaScript code.