Security Advisory

CVE-2026-2336

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-16 17:02:06

Last updated 2026-04-16 17:34:39

Assigner Microchip

State PUBLISHED

Description

A privilege escalation vulnerability in Microchip IStaX allows an authenticated low-privileged user to recover a shared per-device cookie secret from their own webstax_auth session cookie and forge a new cookie with administrative privileges.This issue affects IStaX before 2026.03.

← Browse all CVEs View on cve.org ↗