Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

RedhatCVE
RedhatCVEadded 2025/05/23 10:30 p.m.14 views

CVE-2025-34026

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The internal Actuator endpoint can be leveraged for access to heap dumps and trace logs.This issue is kno...

9.2CVSS7.1AI score0.71079EPSS
Exploits1References1
The Hacker News
The Hacker Newsadded 2025/05/22 11:6 a.m.21 views

Critical Versa Concerto Flaws Let Attackers Escape Docker and Compromise Hosts

Cybersecurity researchers have uncovered multiple critical security vulnerabilities impacting the Versa Concerto network security and SD-WAN orchestration platform that could be exploited to take control of susceptible instances. It's worth noting that the identified shortcomings remain unpatched...

10CVSS8.3AI score0.71079EPSS
Exploits1
Circl
Circladded 2025/05/21 10:41 p.m.166 views

CVE-2025-34026

creationtimestamp| type| source ---|---|--- 2025-05-21 22:41:55+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17211 2025-05-21 23:25:41+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114548404428327018 2025-05-22 01:18:28+00:00| seen|...

9.2CVSS7.5AI score0.71079EPSS
In wildExploits1References20
CVE
CVEadded 2025/05/21 10:4 p.m.91 views

CVE-2025-34026

Versa Concerto (SD-WAN) contains an authentication bypass in the Traefik reverse proxy configuration that guards the Spring Boot Actuator endpoints. The flaw allows an unauthenticated attacker to reach administrative endpoints, including the Actuator endpoints that can expose heap dumps and trace...

9.2CVSS7.2AI score0.71079EPSS
In wildExploits1References3Affected Software1
Vulnrichment
Vulnrichmentadded 2025/05/21 10:4 p.m.7 views

CVE-2025-34026 Versa Concerto Actuator Authentication Bypass Information Leak

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The internal Actuator endpoint can be leveraged for access to heap dumps and trace logs.This issue is kno...

9.2CVSS6.8AI score0.71079EPSS
Exploits1References1
Cvelist
Cvelistadded 2025/05/21 10:4 p.m.18 views

CVE-2025-34026 Versa Concerto Actuator Authentication Bypass Information Leak

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The internal Actuator endpoint can be leveraged for access to heap dumps and trace logs.This issue is kno...

9.2CVSS0.71079EPSS
Exploits1References1
Rows per page
Query Builder