42 matches found
EUVD-2026-45366
VMware Avi Load Balancer contains a directory traversal vulnerability. Flaws in file path validation allow malicious, authenticated network users to perform directory traversal attacks. Affected versions: 32.1.1 fixed in 32.1.2 31.1.1 through 31.2.2 fixed in 31.2.2-2p3 30.1.1 through 30.2.6 fixed...
CVE-2026-47871
The CVE-2026-47871 issue affects VMware Avi Load Balancer and is a directory traversal vulnerability caused by flaws in file path validation. Affected versions and fixed milestones are: 32.1.1 (fixed in 32.1.2); 31.1.1–31.2.2 (fixed in 31.2.2-2p3); 30.1.1–30.2.6 (fixed in 30.2.7); and 22.1.1–22.1...
EUVD-2026-45365
VMware Avi Load Balancer contains a privilege escalation vulnerability. A malicious authenticated user with network access may be able to execute remote code. Affected versions: 32.1.1 fixed in 32.1.2 31.1.1 through 31.2.2 fixed in 31.2.2-2p3 30.1.1 through 30.2.6 fixed in 30.2.7 22.1.1 through...
EUVD-2026-45364
VMware Avi Load Balancer contains a remote code execution vulnerability. A malicious authenticated user with network access may be able to inject and execute code. Affected versions: 32.1.1 fixed in 32.1.2 31.1.1 through 31.2.2 fixed in 31.2.2-2p3 30.1.1 through 30.2.6 fixed in 30.2.7 22.1.1...
EUVD-2026-45363
VMware Avi Load Balancer contains a local privilege escalation vulnerability. A malicious user with local access may be able to escalate their privileges to run code as root. Affected versions: 32.1.1 fixed in 32.1.2 31.1.1 through 31.2.2 fixed in 31.2.2-2p3 30.1.1 through 30.2.6 fixed in 30.2.7...
CVE-2026-47868
CVE-2026-47868 concerns VMware Avi Load Balancer. A local privilege escalation allows a user with local access to run code as root. Affected versions are: 32.1.1 (fixed in 32.1.2); 31.1.1–31.2.2 (fixed in 31.2.2-2p3); 30.1.1–30.2.6 (fixed in 30.2.7); 22.1.1–22.1.7 (fixed in 30.2.7). CVSSv3.1 base...
EUVD-2026-45362
VMware Avi Load Balancer contains a remote code execution vulnerability. A malicious user with network access may be able to access the Avi Control plane and execute code remotely. Affected versions: 32.1.1 fixed in 32.1.2 31.1.1 through 31.2.2 fixed in 31.2.2-2p3 30.1.1 through 30.2.6 fixed in...
CVE-2026-47867
CVE-2026-47867 describes a remote code execution vulnerability in VMware Avi Load Balancer. The issue allows an unauthenticated or authenticated (network-access) attacker to execute code on the Avi Control Plane through the network, with a base CVSSv3.1 score of 8.7 (HIGH) and impact on confident...
EUVD-2026-45360
VMware Avi Load Balancer contains an authentication bypass vulnerability. A malicious user with network access may be able to access the Avi Control plane by bypassing the authentication mechanism. Affected versions: 31.1.1 through 31.2.2 fixed in 31.2.2-2p3 30.1.1 through 30.2.6 fixed in 30.2.7...
CVE-2026-47865
The CVE-2026-47865 issue affects VMware Avi Load Balancer and is an authentication bypass in the Avi Control Plane. Affected: Avi Load Balancer platforms listed in the connected docs, with vulnerable releases including 31.1.1–31.2.2 (fix in 31.2.2-2p3), 30.1.1–30.2.6 (fix in 30.2.7), and 22.1.1–2...
PT-2026-58856
Name of the Vulnerable Software and Affected Versions VMware Avi Load Balancer affected versions not specified Description A critical authentication bypass exists in the Avi control plane, which allows unauthorized users to gain access to the control plane. This issue was discovered by researcher...
EUVD-2024-19828
Malicious code in bioql PyPI...
EUVD-2025-2673
Malicious code in bioql PyPI...
EUVD-2024-19830
Malicious code in bioql PyPI...
EUVD-2025-18222
Malicious code in bioql PyPI...
CVE-2025-41233
Description: VMware AVI Load Balancer contains an authenticated blind SQL Injection vulnerability. VMware has evaluated the severity of the issue to be in the Moderate severity range https://www.broadcom.com/support/vmware-services/security-response with a maximum CVSSv3 base score of 6.8...
CVE-2025-41233
Description: VMware AVI Load Balancer contains an authenticated blind SQL Injection vulnerability. VMware has evaluated the severity of the issue to be in the Moderate severity range https://www.broadcom.com/support/vmware-services/security-response with a maximum CVSSv3 base score of 6.8...
CVE-2025-41233
Description: VMware AVI Load Balancer contains an authenticated blind SQL Injection vulnerability. VMware has evaluated the severity of the issue to be in the Moderate severity range https://www.broadcom.com/support/vmware-services/security-response with a maximum CVSSv3 base score of 6.8...
CVE-2025-41233
Description: VMware AVI Load Balancer contains an authenticated blind SQL Injection vulnerability. VMware has evaluated the severity of the issue to be in the Moderate severity range https://www.broadcom.com/support/vmware-services/security-response with a maximum CVSSv3 base score of 6.8...
CVE-2025-41233
CVE-2025-41233 affects VMware Avi Load Balancer. An authenticated attacker can trigger blind SQL injection in versions 30.1.1, 30.1.2, 30.2.1, and 30.2.2 due to improper input validation, enabling unauthorized DB access. Impact described as moderate (CVSSv3 base score up to 6.8). Remediation requ...