The SD-WAN Orchestrator 3.3.2 before 3.3.2 P3, 3.4.x before 3.4.4, and 4.0.x before 4.0.1 handles system parameters in an insecure way. An authenticated SD-WAN Orchestrator user with high privileges may be able to execute arbitrary code on the underlying operating system.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vmware sd-wan orchestrator 3.3.2 |
||
vmware sd-wan orchestrator |