CVE-2025-69270 | THREATINT

Description

Information Exposure Through Query Strings in GET Request vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows Session Hijacking.This issue affects DX NetOps Spectrum: 24.3.8 and earlier.

PUBLISHED Reserved 2025-12-31 | Published 2026-01-12 | Updated 2026-01-12 | Assigner ca

LOW: 2.3CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L

Problem types

CWE-598 Information Exposure Through Query Strings in GET Request

Product status

Default status

unaffected

24.3.8 and earlier (custom)

affected

24.3.9 and later (custom)

unaffected

Credits

Jean-Michel Huguet and Jorge Escabias from NATO Cyber Security Centre finder

References

support.broadcom.com/...l/content/SecurityAdvisories/0/36756 vendor-advisory

cve.org (CVE-2025-69270)

nvd.nist.gov (CVE-2025-69270)

Download JSON