Security Advisory

CVE-2025-41733

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-18 10:17:46

Last updated 2025-11-18 21:17:53

Assigner CERTVDE

State PUBLISHED

Description

The commissioning wizard on the affected devices does not validate if the device is already initialized. An unauthenticated remote attacker can construct POST requests to set root credentials.

← Browse all CVEs View on cve.org ↗