Security Advisory

CVE-2026-23704

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-04 07:03:37

Last updated 2026-02-04 16:07:28

Assigner jpcert

State PUBLISHED

Description

A non-administrative user can upload malicious files. When an administrator or the product accesses that file, an arbitrary script may be executed on the administrators browser. Note that Movable Type 7 series and 8.4 series, which are End-of-Life (EOL), are affected by the vulnerability as well.

← Browse all CVEs View on cve.org ↗