Extremenetworks: >> Extremexos >> 15.3.5 Security Vulnerabilities
Extreme Networks EXOS before v.22.7 and before v.30.2 was discovered to contain an issue in its Web GUI which fails to restrict URL access, allowing attackers to access sensitive information or escalate privileges.
CVSS Score
8.0
EPSS Score
0.001
Published
2024-05-14
In Extreme XOS through 22.6.1.4, a read-only user can escalate privileges to root via a crafted HTTP POST request to the python method of the Machine-to-Machine Interface (MMI).
CVSS Score
8.6
EPSS Score
0.002
Published
2024-05-03