CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Extremenetworks: >> Extremecontrol Security Vulnerabilities

CVE-2025-6235

In ExtremeControl before 25.5.12, a cross-site scripting (XSS) vulnerability was discovered in a login interface of the affected application. The issue stems from improper handling of user-supplied input within HTML attributes, allowing an attacker to inject script code that may execute in a user's browser under specific interaction conditions. Successful exploitation could lead to exposure of user data or unauthorized actions within the browser context.

CVSS Score

6.1

EPSS Score

0.0

Published

2025-07-21

Page 1

Vulnerabilities

Vulnerable Software

Extremenetworks: >> Extremecontrol Security Vulnerabilities

Products

Pricing

Contact Us