Security Advisory

CVE-2025-64348

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-31 18:31:21

Last updated 2025-11-04 15:58:49

Assigner cisa-cg

State PUBLISHED

Description

ELOG allows an authenticated user to modify or overwrite the configuration file, resulting in denial of service. If the execute facility is specifically enabled with the "-x" command line flag, attackers could execute OS commands on the host machine. By default, ELOG is not configured to allow shell commands or self-registration.

← Browse all CVEs View on cve.org ↗