4 matches found
CVE-2025-2172
creationtimestamp| type| source ---|---|--- 2025-06-23 14:45:34+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19212 2025-06-23 15:31:00+00:00| published-proof-of-concept| Telegram/S7RPzkaVu9rMwdZrCAlLyJw5bBMvrbhCFuoMTi2UNDrM6ko 2025-06-23 16:18:13+00:00| seen|...
CVE-2025-2172
Aviatrix Controller versions prior to 7.1.4208, 7.2.5090, and 8.0.0 fail to sanitize user input prior to passing the input to command line utilities, allowing command injection via special characters in filenames...
CVE-2025-2172
Aviatrix Controller is affected in versions prior to 7.1.4208, 7.2.5090, and 8.0.0 due to insufficient input sanitization before passing data to command line utilities, enabling command injection via special characters in filenames. The issue is documented with fixed releases: upgrade to 7.1.4208...
CVE-2025-2172
Aviatrix Controller versions prior to 7.1.4208, 7.2.5090, and 8.0.0 fail to sanitize user input prior to passing the input to command line utilities, allowing command injection via special characters in filenames...