A vulnerability classified as problematic has been found in Endian Firewall 3.3.25 . This impacts an unknown function of the file /cgi-bin/vpnfw.cgi of the component Parameter Handler . This manipulation of the argument remark causes cross site scripting. This vulnerability appears as CVE-2026-34810 . The attack may be initiated remotely. There is no available exploit.