CVE-2025-69275

Summary

Dependency on Vulnerable Third-Party Component vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows DOM-Based XSS.This issue affects DX NetOps Spectrum: 24.3.9 and earlier.

Affected Software

VendorProductVersion RangeStatus
BroadcomDX NetOps Spectrum24.3.9 and earlieraffected
BroadcomDX NetOps Spectrum24.3.10 and laterunaffected

Weaknesses

  • CWE-1395: CWE-1395 Dependency on Vulnerable Third-Party Component

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References