Security Advisory

CVE-2026-22905

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-09 07:40:17

Last updated 2026-02-09 15:33:33

Assigner CERTVDE

State PUBLISHED

Description

An unauthenticated remote attacker can bypass authentication by exploiting insufficient URI validation and using path traversal sequences (e.g., /js/../cgi-bin/post.cgi), gaining unauthorized access to protected CGI endpoints and configuration downloads.

← Browse all CVEs View on cve.org ↗