Extremenetworks Xiq-se — known CVE vulnerabilities
Every CVE whose affected-product data names Extremenetworks Xiq-se, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2024-38292 — CVSS 9.8 (critical): In Extreme Networks XIQ-SE before 24.2.11, due to a missing access control check, a path traversal is possible, which may lead to privilege…
CVE-2024-38291 — CVSS 8.8 (high): In XIQ-SE before 24.2.11, a low-privileged user may be able to access admin passwords, which could lead to privilege escalation.
CVE-2024-38290 — CVSS 5.3 (medium): In XIQ-SE before 24.2.11, a server misconfiguration may allow user enumeration when specific conditions are met.