Security Advisory

CVE-2025-41427

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-06-24 04:37:09

Last updated 2025-06-25 12:42:52

Assigner jpcert

State PUBLISHED

Description

WRC-X3000GS, WRC-X3000GSA, and WRC-X3000GSN contain an improper neutralization of special elements used in an OS command (OS Command Injection) vulnerability in Connection Diagnostics page. If a remote authenticated attacker sends a specially crafted request to the affected product, an arbitrary OS command may be executed.

← Browse all CVEs View on cve.org ↗