CVE-2025-69275 HIGH

CVE-2025-69275: Spectrum outdated java library in class-path

Vendor Broadcom

Product DX NetOps Spectrum

Weakness CWE-1395

Published January 12, 2026

Last update January 12, 2026

View on NVD All CVEs

CVSS base score

7.1/10

Attack vector Network

Attack complexity High

Privileges required Low

User interaction None

Confidentiality —

Integrity —

CVSS vector

CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:H/SI:L/SA:N

What the vulnerability does

Description

Dependency on Vulnerable Third-Party Component vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows DOM-Based XSS.This issue affects DX NetOps Spectrum: 24.3.9 and earlier.

Key dates

Disclosure timeline

January 12, 2026 CVE published

January 12, 2026 Record updated