An issue exists in Aviatrix Gateway prior to 6.6.5712 and 6.7.x prior to 6.7.1376. Because Gateway API functions mishandle authentication, an authenticated VPN user can inject arbitrary commands.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
aviatrix gateway |