CVSS: 10.0EPSS: 93%CPEs: 2EXPL: 2CVE-2024-50603 – Aviatrix Controllers OS Command Injection Vulnerability
https://notcve.org/view.php?id=CVE-2024-50603
08 Jan 2025 — An issue was discovered in Aviatrix Controller before 7.1.4191 and 7.2.x before 7.2.4996. Due to the improper neutralization of special elements used in an OS command, an unauthenticated attacker is able to execute arbitrary code. Shell metacharacters can be sent to /v1/api in cloud_type for list_flightpath_destination_instances, or src_cloud_type for flightpath_connection_test. Aviatrix Controllers contain an OS command injection vulnerability that could allow an unauthenticated attacker to execute arbitra... • https://github.com/newlinesec/CVE-2024-50603 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 9.0EPSS: 0%CPEs: 2EXPL: 0CVE-2022-38368
https://notcve.org/view.php?id=CVE-2022-38368
15 Aug 2022 — An issue was discovered in Aviatrix Gateway before 6.6.5712 and 6.7.x before 6.7.1376. Because Gateway API functions mishandle authentication, an authenticated VPN user can inject arbitrary commands. Se ha detectado un problema en Aviatrix Gateway versiones anteriores a 6.6.5712 y 6.7.x anteriores a 6.7.1376. Debido a que las funciones de la API de Gateway manejan inapropiadamente la autenticación, un usuario de VPN autenticado puede inyectar comandos arbitrarios. • https://docs.aviatrix.com/HowTos/PSIRT_Advisories.html#aviatrix-controller-and-gateways-unauthorized-access • CWE-287: Improper Authentication •
CVSS: 9.8EPSS: 94%CPEs: 4EXPL: 7CVE-2021-40870 – Aviatrix Controller Unrestricted Upload of File
https://notcve.org/view.php?id=CVE-2021-40870
13 Sep 2021 — An issue was discovered in Aviatrix Controller 6.x before 6.5-1804.1922. Unrestricted upload of a file with a dangerous type is possible, which allows an unauthenticated user to execute arbitrary code via directory traversal. Se ha detectado un problema en Aviatrix Controller versiones 6.x anteriores a 6.5-1804.1922. Es posible una carga sin restricciones de un archivo de tipo peligroso, que permite a un usuario no autenticado ejecutar código arbitrario por medio de un salto de directorio Unrestricted uploa... • https://packetstorm.news/files/id/164461 • CWE-23: Relative Path Traversal •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2021-31776
https://notcve.org/view.php?id=CVE-2021-31776
29 Apr 2021 — Aviatrix VPN Client before 2.14.14 on Windows has an unquoted search path that enables local privilege escalation to the SYSTEM user, if the machine is misconfigured to allow unprivileged users to write to directories that are supposed to be restricted to administrators. Aviatrix VPN Client versiones anteriores a 2.14.14 en Windows, presenta una ruta de búsqueda sin comillas que habilita una escalada de privilegios local al usuario SYSTEM, si la máquina está configurada inapropiadamente para permitir a usua... • https://docs.aviatrix.com/Downloads/samlclient.html • CWE-428: Unquoted Search Path or Element •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-27569
https://notcve.org/view.php?id=CVE-2020-27569
21 Apr 2021 — Arbitrary File Write exists in Aviatrix VPN Client 2.8.2 and earlier. The VPN service writes logs to a location that is world writable and can be leveraged to gain write access to any file on the system. Se presenta una Escritura de Archivos Arbitraria en Aviatrix VPN Client versiones 2.8.2 y anteriores. El servicio VPN escribe registros en una ubicación que es de tipo world writable y puede ser aprovechado para conseguir acceso de escritura a cualquier archivo del sistema • https://docs.aviatrix.com/HowTos/security_bulletin_article.html#openvpn-abitrary-file-write • CWE-276: Incorrect Default Permissions •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-27568
https://notcve.org/view.php?id=CVE-2020-27568
21 Apr 2021 — Insecure File Permissions exist in Aviatrix Controller 5.3.1516. Several world writable files and directories were found in the controller resource. Note: All Aviatrix appliances are fully encrypted. This is an extra layer of security. Se presentan Permisos de Archivo No Seguros en Aviatrix Controller versión 5.3.1516. • https://docs.aviatrix.com/HowTos/security_bulletin_article.html#insecure-file-permissions • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-26553
https://notcve.org/view.php?id=CVE-2020-26553
17 Nov 2020 — An issue was discovered in Aviatrix Controller before R6.0.2483. Several APIs contain functions that allow arbitrary files to be uploaded to the web tree. Se detectó un problema en Aviatrix Controller versiones anteriores a R6.0.2483. Varias API contienen funciones que permiten cargar archivos en el árbol web • https://www.criticalstart.com/multiple-vulnerabilities-discovered-in-aviatrix • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2020-26552
https://notcve.org/view.php?id=CVE-2020-26552
17 Nov 2020 — An issue was discovered in Aviatrix Controller before R6.0.2483. Multiple executable files, that implement API endpoints, do not require a valid session ID for access. Se detectó un problema en Aviatrix Controller versiones anteriores a R6.0.2483. Múltiples archivos ejecutables, que implementan endpoints de API, no requieren una ID de sesión válida para acceder • https://www.criticalstart.com/multiple-vulnerabilities-discovered-in-aviatrix •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2020-26551
https://notcve.org/view.php?id=CVE-2020-26551
17 Nov 2020 — An issue was discovered in Aviatrix Controller before R5.3.1151. Encrypted key values are stored in a readable file. Se detectó un problema en Aviatrix Controller versiones anteriores a R5.3.1151. Los valores de clave cifrados son almacenados en un archivo legible • https://www.criticalstart.com/multiple-vulnerabilities-discovered-in-aviatrix • CWE-312: Cleartext Storage of Sensitive Information •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2020-26550
https://notcve.org/view.php?id=CVE-2020-26550
17 Nov 2020 — An issue was discovered in Aviatrix Controller before R5.3.1151. An encrypted file containing credentials to unrelated systems is protected by a three-character key. Se detectó un problema en Aviatrix Controller versiones anteriores a R5.3.1151. Un archivo cifrado que contiene credenciales para sistemas no relacionados está protegido por una clave de tres caracteres • https://www.criticalstart.com/multiple-vulnerabilities-discovered-in-aviatrix • CWE-330: Use of Insufficiently Random Values •