Home

Description

Deserialization of Untrusted Data vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows Object Injection.This issue affects DX NetOps Spectrum: 24.3.13 and earlier.

PUBLISHED Reserved 2025-12-31 | Published 2026-01-12 | Updated 2026-01-12 | Assigner ca




LOW: 2.3CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N

Problem types

CWE-502 Deserialization of Untrusted Data

Product status

Default status
unaffected

24.3.13 and earlier (custom)
affected

25.4.1 and later (custom)
unaffected

Credits

Jean-Michel Huguet and Jorge Escabias from NATO Cyber Security Centre finder

References

support.broadcom.com/...l/content/SecurityAdvisories/0/36756 vendor-advisory

cve.org (CVE-2025-69276)

nvd.nist.gov (CVE-2025-69276)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.