Security Advisory

CVE-2025-40889

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-07 12:37:58

Last updated 2025-10-07 13:08:57

Assigner Nozomi

State PUBLISHED

Description

A path traversal vulnerability was discovered in the Time Machine functionality due to missing validation of two input parameters. An authenticated user with limited privileges, by issuing a specifically-crafted request, can potentially alter the structure and content of files in the /data folder, and/or affect their availability.

← Browse all CVEs View on cve.org ↗