Primary

Context

Broadcom DX NetOps Spectrum Information Exposure Vulnerability Allowing Session Hijacking

Vulnerability

Patched

A vulnerability in Broadcom DX NetOps Spectrum on Windows and Linux, prior to version 24.3.9, allows session hijacking by exposing session tokens in URLs for certain administrative functions. This issue affects DX NetOps Spectrum versions 24.3.8 and earlier.

Impact

Exposing session tokens in URLs for administrative functions could lead to session hijacking.

Remediation

Upgrading to Broadcom DX NetOps Spectrum version 25.4.1 or later resolves this vulnerability. Instructions for upgrading can be found in the Broadcom DX NetOps Spectrum release notes.

Added: Jan 12, 2026, 5:20 AM

Updated: Jan 12, 2026, 5:20 AM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

5.0

exploitability

5.6

remediation

7.7

relevance

1.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

5.0

exploitability

5.6

remediation

7.7

relevance

1.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Broadcom DX NetOps Spectrum Information Exposure Vulnerability Allowing Session Hijacking

Vulnerability

Impact

Remediation

Affected Products

Broadcom DX NetOps Spectrum

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating