Security Advisory

CVE-2025-64309

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-14 23:41:18
Last updated 2026-06-25 22:22:32
Assigner icscert
State PUBLISHED

Description

The affected product discloses device telemetry, configuration, and sensitive information via WebSocket traffic to unauthenticated users when they connect to a specific URL. The unauthenticated URL can be discovered through basic network scanning techniques.