Security Advisory

CVE-2025-40897

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-15 08:18:05

Last updated 2026-05-12 12:08:07

Assigner Nozomi

State PUBLISHED

Description

An access control vulnerability was discovered in the Threat Intelligence functionality due to a specific access restriction not being properly enforced for users with view-only privileges. An authenticated user with view-only privileges for the Threat Intelligence functionality can perform administrative actions on it, altering the rules configuration, and/or affecting their availability.

← Browse all CVEs View on cve.org ↗