exploitDog

CVE-2025-6083

Опубликовано: 13 июн. 2025

Источник: nvd

EPSS Низкий

Описание

In ExtremeCloud Universal ZTNA, a syntax error in the 'searchKeyword' condition caused queries to bypass the owner_id filter. This issue may allow users to search data across the entire table instead of being restricted to their specific owner_id.

Ссылки

https://extreme-networks.my.site.com/ExtrArticleDetail?an=000126912

EPSS

Процентиль: 11%

0.00038

Низкий

Дефекты

CWE-287

Связанные уязвимости

GHSA-hm47-446q-7w5f

github

5 дней назад

In ExtremeCloud Universal ZTNA, a syntax error in the 'searchKeyword' condition caused queries to bypass the owner_id filter. This issue may allow users to search data across the entire table instead of being restricted to their specfic owenr_id.

EPSS

Процентиль: 11%

0.00038

Низкий

Дефекты

CWE-287