CVE-2025-69274Authorization Bypass Through User-Controlled Key in DX Netops Spectrum

CWE-639Authorization Bypass Through User-Controlled Key3 documents3 sources
Severity
2.3LOWNVD
EPSS
0.1%
top 80.84%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Broadcom DX Netops Spectrum
Timeline
PublishedJan 12

Description

Authorization Bypass Through User-Controlled Key vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows Privilege Escalation.This issue affects DX NetOps Spectrum: 24.3.10 and earlier.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

Affected Packages2 packages

CVEListV5broadcom/dx_netops_spectrum24.3.10 and earlier

🔴Vulnerability Details

2
GHSA
GHSA-h37x-rm9w-8gpx: Authorization Bypass Through User-Controlled Key vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows Privilege Escalation2026-01-12
CVEList
Spectrum broken authorization scheme2026-01-12
CVE-2025-69274 — DX Netops Spectrum vulnerability | cvebase