Extreme Networks

SamPirok

Summary A race condition in the shared Extreme Platform ONE IAM Gateway API-key authentication path could, under specific high-concurrency traffic conditions, intermittently allow requests authenticated with an Extreme Platform ONE/IAM-issued API key...

SamPirok

Summary Parsing CMS AuthEnvelopedData message with maliciously crafted AEAD parameters can trigger a stack buffer overflow. A stack buffer overflow may lead to a crash, causing Denial of Service, or potentially remote code execution. When parsing CMS...

SamPirok

Summary Out-of-bounds read/write flaw in OpenSSL’s RFC 3211 KEK unwrap function, affecting CMS decryption with password-based encryption. Malicious inputs could trigger denial of service or, in rare cases, code execution. Products not listed in the I...

SamPirok

Summary In the Linux kernel, the following has been resolved: crypto: algif_aead - Revert to operating out-of-place. This mostly reverts commit 72548b093ee3 except for the copying of the associated data. Products not listed in the Impact Details sect...

SamPirok · 04-09-2026

The ExtremeCloud™ IQ classic UI will be retired Q4 calendar year 2026. The new UI has been available since July 2025 to ensure customers have ample time to become comfortable before the classic UI is retired. We will be transitioning from the classi...

SamPirok

Hi @OneManVsMachine, thank you for reaching out. For the kind of configuration guidance you're looking for, I'd recommend reaching out to your local sales engineer; they can walk you through how to set up your network any way you'd like to. If you ar...

SamPirok

Hi Dilshan, thanks for reaching out. Could you send me the serial numbers of the devices you need assistance with? I can't promise anything but I'll see what I can do for you on my side of things.

SamPirok · 04-17-2026

Hey guys, appreciate all the feedback here. I've looped in my boss and we're going to bring this up to leadership. In the mean time, I think I found your case Raul, I'll see what I can do to get a push on that for you. To be continued!

SamPirok · 04-16-2026

Hi Robert, we'd really need to do a packet capture with you to see where the DHCP is going when the devices are on site so we can confirm your old settings aren't getting overwritten somewhere further upstream. If you haven't already, please open a c...

SamPirok · 04-15-2026

@house_arelius - I think a lot of your questions have been answered by others but just so we've covered everything I wanted to get back to you. For client and device views, yes there are plans to update the visible data and I've mentioned where you c...

Extreme Networks

User Statistics

User Activity

SA-2026-048 - ExtremeCloud IQ Cross-Tenant Data Exposure via Extreme Platform One Authentication Rac

SA-2026-007 - OpenSSL CMS AuthEnvelopedData Buffer Overflow (CVE-2025-15467)

SA-2025-116 - OpenSSL OOB Read Write Flaw (CVE-2025-9230)

SA-2026-040 - Copy Fail Linux Kernel LPE (CVE-2026-31431)

ExtremeCloud™ IQ UI Transition: What You Need to Know

Re: 5320-48p-8xe core switch setup

Re: Need to unbind legacy APs from unknown VIQ account (No Invoice)

Re: Firmware Cluster F - XIQ "Classic" Versus EP1

Re: ZTP+ and Management IP

Re: ExtremeCloud™ IQ UI Transition: What You Need to Know