Platform
other
Component
dx-netops-spectrum
Fixed in
24.3.11
CVE-2025-69273 describes an Improper Authentication vulnerability discovered in Broadcom DX NetOps Spectrum. This flaw allows an attacker to bypass authentication controls, potentially gaining unauthorized access to the system. The vulnerability impacts versions of DX NetOps Spectrum up to and including 24.3.11, with a fix available in version 24.3.12.
Successful exploitation of CVE-2025-69273 allows an attacker to circumvent authentication mechanisms within DX NetOps Spectrum. This could lead to unauthorized access to sensitive network management data, configuration settings, and potentially the ability to manipulate network devices managed by Spectrum. Depending on the attacker's privileges after authentication bypass, they could disrupt network operations, exfiltrate confidential information, or even establish a persistent foothold within the environment. The blast radius extends to any systems and data managed by the compromised Spectrum instance.
CVE-2025-69273 was publicly disclosed on 2026-01-12. Currently, there are no publicly available proof-of-concept exploits. The EPSS score is pending evaluation. It is not listed on the CISA KEV catalog at the time of writing.
Exploit Status
EPSS
0.08% (23% percentile)
CISA SSVC
The primary mitigation for CVE-2025-69273 is to upgrade to Broadcom DX NetOps Spectrum version 24.3.12 or later. If immediate upgrade is not feasible, consider implementing stricter access controls and multi-factor authentication (MFA) where possible to limit the impact of a potential authentication bypass. Review existing authentication configurations and disable any unnecessary or overly permissive access rules. Monitor authentication logs for suspicious activity and implement intrusion detection systems (IDS) to identify potential exploitation attempts.
Update Broadcom DX NetOps Spectrum to a version later than 24.3.10 to fix the authentication vulnerability. See the Broadcom security advisory for detailed upgrade instructions. It is recommended to create a backup before upgrading.
Vulnerability analysis and critical alerts directly to your inbox.
CVE-2025-69273 is a vulnerability in Broadcom DX NetOps Spectrum that allows attackers to bypass authentication controls, potentially gaining unauthorized access.
If you are running Broadcom DX NetOps Spectrum versions 24.3.10 or earlier, you are potentially affected by this vulnerability.
Upgrade to Broadcom DX NetOps Spectrum version 24.3.12 or later to remediate the vulnerability. Implement stricter access controls as an interim measure.
As of the current date, there are no confirmed reports of active exploitation of CVE-2025-69273.
Refer to the Broadcom Security Advisory for detailed information and updates regarding CVE-2025-69273.
Upload your dependency file and we'll tell you instantly if this and other CVEs hit you.