Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aviatrix controller 5.3.1516 vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2020-26548
An issue exists in Aviatrix Controller before R5.4.1290. There is an insecure sudo rule: a user exists that can execute all commands as any user on the system.
Aviatrix Controller 5.3.1516
5
CVSSv2
CVE-2020-26549
An issue exists in Aviatrix Controller before R5.4.1290. The htaccess protection mechanism to prevent requests to directories can be bypassed for file downloading.
Aviatrix Controller 5.3.1516
5
CVSSv2
CVE-2020-26550
An issue exists in Aviatrix Controller before R5.3.1151. An encrypted file containing credentials to unrelated systems is protected by a three-character key.
Aviatrix Controller 5.3.1516
5
CVSSv2
CVE-2020-26551
An issue exists in Aviatrix Controller before R5.3.1151. Encrypted key values are stored in a readable file.
Aviatrix Controller 5.3.1516
5
CVSSv2
CVE-2020-26552
An issue exists in Aviatrix Controller before R6.0.2483. Multiple executable files, that implement API endpoints, do not require a valid session ID for access.
Aviatrix Controller 5.3.1516
7.5
CVSSv2
CVE-2020-26553
An issue exists in Aviatrix Controller before R6.0.2483. Several APIs contain functions that allow arbitrary files to be uploaded to the web tree.
Aviatrix Controller 5.3.1516
5
CVSSv2
CVE-2020-27568
Insecure File Permissions exist in Aviatrix Controller 5.3.1516. Several world writable files and directories were found in the controller resource. Note: All Aviatrix appliances are fully encrypted. This is an extra layer of security.
Aviatrix Controller 5.3.1516
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started