A vulnerability was found in Endian Firewall 3.3.25 . It has been declared as problematic . Impacted is an unknown function of the file /cgi-bin/openvpnclient.cgi of the component Parameter Handler . Such manipulation of the argument REMARK leads to cross site scripting. This vulnerability is referenced as CVE-2026-34819 . It is possible to launch the attack remotely. No exploit is available.