PatchSiren cyber security CVE debrief
CVE-2026-0689 Extreme Networks CVE debrief
CVE-2026-0689 is a medium-severity vulnerability in ExtremeCloud IQ – Site Engine (XIQ-SE) before 26.2.10. This vulnerability allows an authenticated NAC administrator to retrieve masked sensitive parameters from HTTP responses. Although credentials appear redacted in the user interface, the application returns the underlying credential values in the HTTP response. This enables an authorized administrator to recover stored secrets that may exceed their intended access.
- Vendor
- Extreme Networks
- Product
- ExtremeCloud IQ - Site Engine
- CVSS
- MEDIUM 6
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-03-02
- Original CVE updated
- 2026-06-05
- Advisory published
- 2026-03-02
- Advisory updated
- 2026-06-05
Who should care
Users of ExtremeCloud IQ – Site Engine (XIQ-SE) versions prior to 26.2.10 should apply the patch to prevent potential unauthorized access to sensitive information.
Technical summary
The vulnerability exists in the NAC administration interface of ExtremeCloud IQ – Site Engine (XIQ-SE). An authenticated NAC administrator can exploit this vulnerability to retrieve sensitive parameters from HTTP responses, despite the credentials being redacted in the user interface.
Defensive priority
Medium
Recommended defensive actions
- Apply the patch to upgrade ExtremeCloud IQ – Site Engine (XIQ-SE) to version 26.2.10 or later.
- Review and restrict administrative access to the NAC administration interface.
- Monitor HTTP responses for sensitive information disclosure.
Evidence notes
The Lockheed Martin Red Team responsibly reported this issue and worked with Extreme Networks through coordinated disclosure.
Official resources
-
CVE-2026-0689 CVE record
CVE.org
-
CVE-2026-0689 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
1c053176-eef3-4d6a-ae0b-24728c86587b - Vendor Advisory
CVE-2026-0689 was published on March 2, 2026, and modified on June 5, 2026.