Lucene search
+L

21 matches found

CVE
CVE
added 14 hours ago8 views

CVE-2026-47870

CVE-2026-47870 affects VMware Avi Load Balancer. A malicious authenticated user with network access can potentially execute remote code due to a privilege-escalation flaw. Affected versions and fixes shown in public records: 32.1.1 (fixed in 32.1.2); 31.1.1–31.2.2 (fixed in 31.2.2-2p3); 30.1.1–30...

7.1CVSS5.5AI score
Exploits0References1
CVE
CVE
added 14 hours ago10 views

CVE-2026-47869

CVE-2026-47869 describes a remote code execution flaw in VMware Avi Load Balancer. An authenticated user with network access can inject and execute code. Affected versions and fixed releases: 32.1.1 (fixed in 32.1.2); 31.1.1–31.2.2 (fixed in 31.2.2-2p3); 30.1.1–30.2.6 (fixed in 30.2.7); 22.1.1–22...

8.7CVSS6.3AI score
Exploits0References1
CVE
CVE
added 14 hours ago11 views

CVE-2026-47868

CVE-2026-47868 concerns VMware Avi Load Balancer. A local privilege escalation allows a user with local access to run code as root. Affected versions are: 32.1.1 (fixed in 32.1.2); 31.1.1–31.2.2 (fixed in 31.2.2-2p3); 30.1.1–30.2.6 (fixed in 30.2.7); 22.1.1–22.1.7 (fixed in 30.2.7). CVSSv3.1 base...

7.8CVSS5.4AI score
Exploits0References1
CVE
CVE
added 14 hours ago9 views

CVE-2026-47866

CVE-2026-47866 affects VMware Avi Load Balancer and describes an authorization bypass that could let an attacker on the network access a limited subset of the Avi Control Plane without proper authorization. Affected versions and fixes: 32.1.1 (fixed in 32.1.2); 31.1.1–31.2.2 (fixed in 31.2.2-2p3)...

8.3CVSS5.4AI score
Exploits0References1
EUVD
EUVD
added 14 hours ago6 views

EUVD-2026-45361

VMware Avi Load Balancer contains an authorization bypass vulnerability. A malicious actor on the network can access a limited subset of the Avi Control Plane without proper authorization. Affected versions: 32.1.1 fixed in 32.1.2 31.1.1 through 31.2.2 fixed in 31.2.2-2p3 30.1.1 through 30.2.6...

8.3CVSS5.3AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2 days ago7 views

PT-2026-60426

VMware Avi Load Balancer contains a remote code execution vulnerability. A malicious authenticated user with network access may be able to inject and execute code. Affected versions: 32.1.1 fixed in 32.1.2 31.1.1 through 31.2.2 fixed in 31.2.2-2p3 30.1.1 through 30.2.6 fixed in 30.2.7 22.1.1...

8.7CVSS6.3AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2 days ago7 views

PT-2026-60428

VMware Avi Load Balancer contains a directory traversal vulnerability. Flaws in file path validation allow malicious, authenticated network users to perform directory traversal attacks. Affected versions: 32.1.1 fixed in 32.1.2 31.1.1 through 31.2.2 fixed in 31.2.2-2p3 30.1.1 through 30.2.6 fixed...

8.8CVSS5.2AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2 days ago9 views

PT-2026-60427

VMware Avi Load Balancer contains a privilege escalation vulnerability. A malicious authenticated user with network access may be able to execute remote code. Affected versions: 32.1.1 fixed in 32.1.2 31.1.1 through 31.2.2 fixed in 31.2.2-2p3 30.1.1 through 30.2.6 fixed in 30.2.7 22.1.1 through...

7.1CVSS5.5AI score
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-19828

Malicious code in bioql PyPI...

7.2CVSS6.6AI score0.00549EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-19830

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00399EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/14 10:13 p.m.6 views

CVE-2025-41233

Description: VMware AVI Load Balancer contains an authenticated blind SQL Injection vulnerability. VMware has evaluated the severity of the issue to be in the Moderate severity range https://www.broadcom.com/support/vmware-services/security-response with a maximum CVSSv3 base score of 6.8...

6.8CVSS7.3AI score0.00277EPSS
Exploits0References1
NVD
NVD
added 2025/06/12 10:15 p.m.11 views

CVE-2025-41233

Description: VMware AVI Load Balancer contains an authenticated blind SQL Injection vulnerability. VMware has evaluated the severity of the issue to be in the Moderate severity range https://www.broadcom.com/support/vmware-services/security-response with a maximum CVSSv3 base score of 6.8...

6.8CVSS0.00277EPSS
Exploits0References1
CVE
CVE
added 2025/06/12 9:39 p.m.52 views

CVE-2025-41233

CVE-2025-41233 affects VMware Avi Load Balancer. An authenticated attacker can trigger blind SQL injection in versions 30.1.1, 30.1.2, 30.2.1, and 30.2.2 due to improper input validation, enabling unauthorized DB access. Impact described as moderate (CVSSv3 base score up to 6.8). Remediation requ...

6.8CVSS7.2AI score0.00277EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/12 9:39 p.m.2 views

CVE-2025-41233

Description: VMware AVI Load Balancer contains an authenticated blind SQL Injection vulnerability. VMware has evaluated the severity of the issue to be in the Moderate severity range https://www.broadcom.com/support/vmware-services/security-response with a maximum CVSSv3 base score of 6.8...

6.8CVSS8.6AI score0.00277EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/12 9:39 p.m.26 views

CVE-2025-41233

Description: VMware AVI Load Balancer contains an authenticated blind SQL Injection vulnerability. VMware has evaluated the severity of the issue to be in the Moderate severity range https://www.broadcom.com/support/vmware-services/security-response with a maximum CVSSv3 base score of 6.8...

6.8CVSS0.00277EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/05/14 12:0 a.m.7 views

The vulnerability of software for managing traffic in hybrid and multi-cloud environments, such as VMware Avi Load Balancer, stems from insecure management of privileges. This allows attackers to escalate their privileges and gain access to create, modify, or delete files.

The vulnerability of the software for managing traffic in hybrid and multi-cloud environments in VMware Avi Load Balancer is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to increase their privileges and gain access to create, modify, or delete...

9CVSS5.5AI score0.00549EPSS
Exploits0References3Affected Software1
The Hacker News
The Hacker News
added 2025/01/29 5:29 a.m.28 views

Broadcom Warns of High-Severity SQL Injection Flaw in VMware Avi Load Balancer

Broadcom has alerted of a high-severity security flaw in VMware Avi Load Balancer that could be weaponized by malicious actors to gain entrenched database access. The vulnerability, tracked as CVE-2025-22217 CVSS score: 8.6, has been described as an unauthenticated blind SQL injection. "A malicio...

8.6CVSS8.1AI score0.00633EPSS
Exploits0
CVE
CVE
added 2024/05/08 3:57 a.m.69 views

CVE-2024-22264

CVE-2024-22264 affects VMware Avi Load Balancer. The available connected documents describe a privilege escalation where an administrator on the appliance can create, modify, execute, and delete files as root on the host system, indicating a local-privilege escalation vulnerability. The CVSS v3.1...

7.2CVSS7.4AI score0.00549EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/08 3:57 a.m.8 views

CVE-2024-22264 VMware Avi Load Balancer updates address multiple vulnerabilities

VMware Avi Load Balancer contains a privilege escalation vulnerability. A malicious actor with admin privileges on VMware Avi Load Balancer can create, modify, execute and delete files as a root user on the host system...

7.2CVSS7.5AI score0.00549EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/05/08 12:0 a.m.7 views

VMware Avi Load Balancer 安全漏洞

VMware Avi Load Balancer is a load balancing platform from VMware. A security vulnerability exists in VMware Avi Load Balancer that originates from a malicious actor with access to system logs being able to view cloud connection credentials in plaintext...

6.5CVSS6.7AI score0.00399EPSS
Exploits0References2
Rows per page
Query Builder