6 matches found
CVE-2025-23172
The Versa Director SD-WAN orchestration platform includes a Webhook feature for sending notifications to external HTTP endpoints. However, the "Add Webhook" and "Test Webhook" functionalities can be abused by an authenticated user to send crafted HTTP requests to localhost. This can be leveraged ...
CVE-2025-23172
The Versa Director SD-WAN orchestration platform includes a Webhook feature for sending notifications to external HTTP endpoints. However, the "Add Webhook" and "Test Webhook" functionalities can be abused by an authenticated user to send crafted HTTP requests to localhost. This can be leveraged ...
CVE-2025-23172
creationtimestamp| type| source ---|---|--- 2025-06-18 23:41:35+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18822 2025-06-19 01:05:08+00:00| seen| Telegram/o4VR5fP0RObkYE5GCSWcOZP4OP4WWVDrridRceJ4mceL0 2025-06-19 08:50:17+00:00| seen|...
CVE-2025-23172
The Versa Director SD-WAN orchestration platform includes a Webhook feature for sending notifications to external HTTP endpoints. However, the "Add Webhook" and "Test Webhook" functionalities can be abused by an authenticated user to send crafted HTTP requests to localhost. This can be leveraged ...
CVE-2025-23172
The CVE-2025-23172 entry affects Versa Director SD-WAN, where the Webhook feature (Add Webhook/Test Webhook) can be abused by an authenticated user to send crafted HTTP requests to localhost. This could allow command execution on behalf of the Versa user who has sudo privileges, potentially enabl...
CVE-2025-23172
The Versa Director SD-WAN orchestration platform includes a Webhook feature for sending notifications to external HTTP endpoints. However, the "Add Webhook" and "Test Webhook" functionalities can be abused by an authenticated user to send crafted HTTP requests to localhost. This can be leveraged ...