Security Advisory

CVE-2026-26049

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-20 16:03:56

Last updated 2026-02-20 19:58:24

Assigner icscert

State PUBLISHED

Description

The web management interface of the device renders the passwords in a plaintext input field. The current password is directly visible to anyone with access to the UI, potentially exposing administrator credentials to unauthorized observation via shoulder surfing, screenshots, or browser form caching.

← Browse all CVEs View on cve.org ↗