Lucene search
+L

60 matches found

bdu_fstec
bdu_fstec
added 2025/06/13 12:0 a.m.7 views

The vulnerability of the SD-WAN Versa Concerto automation and orchestration platform lies in the improper assignment of permissions for critical resources during the signature verification process. This allows attackers to execute arbitrary code and increase their privileges.

The vulnerability of the SD-WAN Versa Concerto automation and orchestration platform lies in the improper assignment of permissions for critical resources during the signature verification process. Exploiting this vulnerability allows attackers to execute arbitrary code and enhance their privileg...

6.4CVSS8.6AI score0.00426EPSS
Exploits0References3Affected Software1
bdu_fstec
bdu_fstec
added 2025/06/13 12:0 a.m.6 views

The vulnerability of the Internal Actuator Endpoint component of the SD-WAN automation and orchestration platform, which allows a intruder to gain unauthorized access to protected information.

The vulnerability of the Internal Actuator Endpoint component of the SD-WAN automation and orchestration platform, Versa Concerto, relates to the possibility of bypassing authentication. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected informati...

8.5CVSS8.1AI score0.83479EPSS
Exploits1References5Affected Software1
bdu_fstec
bdu_fstec
added 2025/06/13 12:0 a.m.8 views

The vulnerability of the Traefik Reverse Proxy Configuration Handler component of the automation and orchestration platform for SD-WAN processes, Versa Concerto, allows a attacker to execute arbitrary code.

The vulnerability of the Traefik Reverse Proxy Configuration Handler component of the automation and orchestration platform for SD-WAN processes, Versa Concerto, relates to the possibility of bypassing authentication. Exploiting this vulnerability allows a malicious actor to execute arbitrary cod...

8.5CVSS8.4AI score0.35993EPSS
Exploits0References4Affected Software1
vulncheck_kev
vulncheck_kev
added 2025/06/07 12:0 a.m.4 views

VulnCheck KEV: CVE-2025-34026

Versa Concerto SD-WAN orchestration platform contains an improper authentication vulnerability in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The internal Actuator endpoint can be leveraged for access to heap dumps and trace logs...

9.2CVSS5.8AI score0.83479EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/23 10:30 p.m.17 views

CVE-2025-34025

The Versa Concerto SD-WAN orchestration platform is vulnerable to an privileges escalation and container escape vulnerability caused by unsafe default mounting of host binary paths that allow the container to modify host paths. The escape can be used to trigger remote code execution or direct hos...

8.6CVSS8AI score0.00426EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 10:30 p.m.15 views

CVE-2025-34026

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The internal Actuator endpoint can be leveraged for access to heap dumps and trace logs.This issue is kno...

9.2CVSS7.1AI score0.83479EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/23 10:30 p.m.28 views

CVE-2025-34027

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The Spack upload endpoint can be leveraged for a Time-of-Check to Time-of-Use TOCTOU write in combination...

10CVSS8.2AI score0.35993EPSS
Exploits0References1
thn
thn
added 2025/05/22 11:6 a.m.45 views

Critical Versa Concerto Flaws Let Attackers Escape Docker and Compromise Hosts

Cybersecurity researchers have uncovered multiple critical security vulnerabilities impacting the Versa Concerto network security and SD-WAN orchestration platform that could be exploited to take control of susceptible instances. It's worth noting that the identified shortcomings remain unpatched...

10CVSS8.3AI score0.83479EPSS
Exploits1
nvd
nvd
added 2025/05/21 11:15 p.m.15 views

CVE-2025-34025

The Versa Concerto SD-WAN orchestration platform is vulnerable to an privileges escalation and container escape vulnerability caused by unsafe default mounting of host binary paths that allow the container to modify host paths. The escape can be used to trigger remote code execution or direct hos...

8.6CVSS0.00426EPSS
Exploits0References1
nvd
nvd
added 2025/05/21 10:15 p.m.20 views

CVE-2025-34026

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The internal Actuator endpoint can be leveraged for access to heap dumps and trace logs.This issue is kno...

9.2CVSS0.83479EPSS
Exploits1References3
osv
osv
added 2025/05/21 10:15 p.m.7 views

CVE-2025-34026

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The internal Actuator endpoint can be leveraged for access to heap dumps and trace logs.This issue is kno...

7.5CVSS7.5AI score0.83479EPSS
Exploits1References3
nvd
nvd
added 2025/05/21 10:15 p.m.53 views

CVE-2025-34027

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The Spack upload endpoint can be leveraged for a Time-of-Check to Time-of-Use TOCTOU write in combination...

10CVSS0.35993EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/05/21 10:11 p.m.14 views

CVE-2025-34025 Versa Concerto Insecure Docker Mount Container Escape

The Versa Concerto SD-WAN orchestration platform is vulnerable to an privileges escalation and container escape vulnerability caused by unsafe default mounting of host binary paths that allow the container to modify host paths. The escape can be used to trigger remote code execution or direct hos...

8.6CVSS7.6AI score0.00426EPSS
Exploits0References1
cve
cve
added 2025/05/21 10:11 p.m.61 views

CVE-2025-34025

CVE-2025-34025 affects Versa Concerto SD-WAN (versions 12.1.2–12.2.0). The root cause is unsafe default mounting of host binary paths in containers, enabling container escape and potential privilege escalation with possible remote code execution or direct host access depending on host OS. Affecte...

8.6CVSS7.6AI score0.00426EPSS
Exploits0References1
cvelist
cvelist
added 2025/05/21 10:11 p.m.20 views

CVE-2025-34025 Versa Concerto Insecure Docker Mount Container Escape

The Versa Concerto SD-WAN orchestration platform is vulnerable to an privileges escalation and container escape vulnerability caused by unsafe default mounting of host binary paths that allow the container to modify host paths. The escape can be used to trigger remote code execution or direct hos...

8.6CVSS0.00426EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/05/21 10:4 p.m.9 views

CVE-2025-34026 Versa Concerto Actuator Authentication Bypass Information Leak

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The internal Actuator endpoint can be leveraged for access to heap dumps and trace logs.This issue is kno...

9.2CVSS6.8AI score0.83479EPSS
Exploits1References1
cvelist
cvelist
added 2025/05/21 10:4 p.m.106 views

CVE-2025-34026 Versa Concerto Actuator Authentication Bypass Information Leak

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The internal Actuator endpoint can be leveraged for access to heap dumps and trace logs.This issue is kno...

9.2CVSS0.83479EPSS
Exploits1References1
cve
cve
added 2025/05/21 10:4 p.m.114 views

CVE-2025-34026

Versa Concerto (SD-WAN) contains an authentication bypass in the Traefik reverse proxy configuration that guards the Spring Boot Actuator endpoints. The flaw allows an unauthenticated attacker to reach administrative endpoints, including the Actuator endpoints that can expose heap dumps and trace...

9.2CVSS7.2AI score0.83479EPSS
In wildExploits1References3Affected Software1
vulnrichment
vulnrichment
added 2025/05/21 9:58 p.m.15 views

CVE-2025-34027 Versa Concerto Authentication Bypass File Write Remote Code Execution

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The Spack upload endpoint can be leveraged for a Time-of-Check to Time-of-Use TOCTOU write in combination...

10CVSS7.8AI score0.35993EPSS
Exploits0References1
cvelist
cvelist
added 2025/05/21 9:58 p.m.44 views

CVE-2025-34027 Versa Concerto Authentication Bypass File Write Remote Code Execution

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The Spack upload endpoint can be leveraged for a Time-of-Check to Time-of-Use TOCTOU write in combination...

10CVSS0.35993EPSS
Exploits0References1
Rows per page
Query Builder