Security Advisory

CVE-2025-6522

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-06-27 17:09:33

Last updated 2025-06-27 18:33:29

Assigner icscert

State PUBLISHED

Description

Unauthenticated users on an adjacent network with the Sight Bulb Pro can run shell commands as root through a vulnerable proprietary TCP protocol available on Port 16668. This vulnerability allows an attacker to run arbitrary commands on the Sight Bulb Pro by passing a well formed JSON string.

← Browse all CVEs View on cve.org ↗