CVE-2025-69267 | THREATINT

Description

Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows Path Traversal.This issue affects DX NetOps Spectrum: 24.3.8 and earlier.

PUBLISHED Reserved 2025-12-31 | Published 2026-01-12 | Updated 2026-01-12 | Assigner ca

HIGH: 8.8CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N

Problem types

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Product status

Default status

affected

24.3.8 and earlier (custom)

affected

24.3.9 and later (custom)

unaffected

Credits

Jean-Michel Huguet and Jorge Escabias from NATO Cyber Security Centre finder

References

support.broadcom.com/...l/content/SecurityAdvisories/0/36756 vendor-advisory

cve.org (CVE-2025-69267)

nvd.nist.gov (CVE-2025-69267)

Download JSON