Design/Logic Flaw

2020-11-1721:15:00

PRIOn knowledge base

www.prio-n.com

7.5 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.0%

JSON

An issue was discovered in Aviatrix Controller before R5.4.1290. The htaccess protection mechanism to prevent requests to directories can be bypassed for file downloading.

CPENameOperatorVersion
controllereq5.3.1516

CPE	Name	Operator	Version
	controller	eq	5.3.1516

References

www.criticalstart.com/multiple-vulnerabilities-discovered-in-aviatrix/