CVE-2025-23416

Sažetak

Path traversal may lead to arbitrary file deletion. The score without least privilege principle violation is as calculated below. In combination with other issues it may facilitate further compromise of the device. Remediation in Version 6.8.0, release date: 01-Mar-25.

Reference

https://support.ixiacom.com/
https://support.ixiacom.com/support-overview/product-support/downloads-updates
https://www.cisa.gov/news-events/ics-advisories/icsa-25-063-02
https://www.keysight.com/us/en/contact.html

CVSS

Base:	4.9
Impact:	3.6
Exploitability:	1.2

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	HIGH

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	HIGH	NONE

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N

Zadnje važnije ažuriranje

05-03-2025 - 16:15

Objavljeno

05-03-2025 - 16:15