Security Advisory

CVE-2026-22543

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-07 16:10:57

Last updated 2026-01-07 16:57:16

Assigner S21sec

State PUBLISHED

Description

The credentials required to access the devices web server are sent in base64 within the HTTP headers. Since base64 is not considered a strong cipher, an attacker could intercept the web request handling the login and obtain the credentials

← Browse all CVEs View on cve.org ↗