Security Advisory

CVE-2025-40806

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-09 10:44:25

Last updated 2025-12-09 16:01:14

Assigner siemens

State PUBLISHED

Description

A vulnerability has been identified in Gridscale X Prepay (All versions < V4.2.1). The affected application is vulnerable to user enumeration due to distinguishable responses. This could allow an unauthenticated remote attacker to determine if a user is valid or not, enabling a brute force attack with valid users.

← Browse all CVEs View on cve.org ↗