60 matches found
The vulnerability of the SD-WAN Versa Concerto automation and orchestration platform lies in the improper assignment of permissions for critical resources during the signature verification process. This allows attackers to execute arbitrary code and increase their privileges.
The vulnerability of the SD-WAN Versa Concerto automation and orchestration platform lies in the improper assignment of permissions for critical resources during the signature verification process. Exploiting this vulnerability allows attackers to execute arbitrary code and enhance their privileg...
The vulnerability of the Internal Actuator Endpoint component of the SD-WAN automation and orchestration platform, which allows a intruder to gain unauthorized access to protected information.
The vulnerability of the Internal Actuator Endpoint component of the SD-WAN automation and orchestration platform, Versa Concerto, relates to the possibility of bypassing authentication. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected informati...
The vulnerability of the Traefik Reverse Proxy Configuration Handler component of the automation and orchestration platform for SD-WAN processes, Versa Concerto, allows a attacker to execute arbitrary code.
The vulnerability of the Traefik Reverse Proxy Configuration Handler component of the automation and orchestration platform for SD-WAN processes, Versa Concerto, relates to the possibility of bypassing authentication. Exploiting this vulnerability allows a malicious actor to execute arbitrary cod...
VulnCheck KEV: CVE-2025-34026
Versa Concerto SD-WAN orchestration platform contains an improper authentication vulnerability in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The internal Actuator endpoint can be leveraged for access to heap dumps and trace logs...
CVE-2025-34025
The Versa Concerto SD-WAN orchestration platform is vulnerable to an privileges escalation and container escape vulnerability caused by unsafe default mounting of host binary paths that allow the container to modify host paths. The escape can be used to trigger remote code execution or direct hos...
CVE-2025-34026
The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The internal Actuator endpoint can be leveraged for access to heap dumps and trace logs.This issue is kno...
CVE-2025-34027
The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The Spack upload endpoint can be leveraged for a Time-of-Check to Time-of-Use TOCTOU write in combination...
Critical Versa Concerto Flaws Let Attackers Escape Docker and Compromise Hosts
Cybersecurity researchers have uncovered multiple critical security vulnerabilities impacting the Versa Concerto network security and SD-WAN orchestration platform that could be exploited to take control of susceptible instances. It's worth noting that the identified shortcomings remain unpatched...
CVE-2025-34025
The Versa Concerto SD-WAN orchestration platform is vulnerable to an privileges escalation and container escape vulnerability caused by unsafe default mounting of host binary paths that allow the container to modify host paths. The escape can be used to trigger remote code execution or direct hos...
CVE-2025-34026
The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The internal Actuator endpoint can be leveraged for access to heap dumps and trace logs.This issue is kno...
CVE-2025-34026
The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The internal Actuator endpoint can be leveraged for access to heap dumps and trace logs.This issue is kno...
CVE-2025-34027
The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The Spack upload endpoint can be leveraged for a Time-of-Check to Time-of-Use TOCTOU write in combination...
CVE-2025-34025 Versa Concerto Insecure Docker Mount Container Escape
The Versa Concerto SD-WAN orchestration platform is vulnerable to an privileges escalation and container escape vulnerability caused by unsafe default mounting of host binary paths that allow the container to modify host paths. The escape can be used to trigger remote code execution or direct hos...
CVE-2025-34025
CVE-2025-34025 affects Versa Concerto SD-WAN (versions 12.1.2–12.2.0). The root cause is unsafe default mounting of host binary paths in containers, enabling container escape and potential privilege escalation with possible remote code execution or direct host access depending on host OS. Affecte...
CVE-2025-34025 Versa Concerto Insecure Docker Mount Container Escape
The Versa Concerto SD-WAN orchestration platform is vulnerable to an privileges escalation and container escape vulnerability caused by unsafe default mounting of host binary paths that allow the container to modify host paths. The escape can be used to trigger remote code execution or direct hos...
CVE-2025-34026 Versa Concerto Actuator Authentication Bypass Information Leak
The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The internal Actuator endpoint can be leveraged for access to heap dumps and trace logs.This issue is kno...
CVE-2025-34026 Versa Concerto Actuator Authentication Bypass Information Leak
The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The internal Actuator endpoint can be leveraged for access to heap dumps and trace logs.This issue is kno...
CVE-2025-34026
Versa Concerto (SD-WAN) contains an authentication bypass in the Traefik reverse proxy configuration that guards the Spring Boot Actuator endpoints. The flaw allows an unauthenticated attacker to reach administrative endpoints, including the Actuator endpoints that can expose heap dumps and trace...
CVE-2025-34027 Versa Concerto Authentication Bypass File Write Remote Code Execution
The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The Spack upload endpoint can be leveraged for a Time-of-Check to Time-of-Use TOCTOU write in combination...
CVE-2025-34027 Versa Concerto Authentication Bypass File Write Remote Code Execution
The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The Spack upload endpoint can be leveraged for a Time-of-Check to Time-of-Use TOCTOU write in combination...