Security Advisory

CVE-2025-41772

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-09 08:18:49

Last updated 2026-03-09 18:18:41

Assigner CERTVDE

State PUBLISHED

Description

An unauthenticated remote attacker can obtain valid session tokens because they are exposed in plaintext within the URL parameters of the wwwupdate.cgi endpoint in UBR.

← Browse all CVEs View on cve.org ↗