An issue exists in Aviatrix Controller prior to 5.4.1204. There is a Observable Response Discrepancy from the API, which makes it easier to perform user enumeration via brute force.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
aviatrix controller |
||
aviatrix vpn client 2.8.2 |