Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/02/04 11:39 p.m.7 views

CVE-2024-22246

VMware SD-WAN Edge contains an unauthenticated command injection vulnerability potentially leading to remote code execution. A malicious actor with local access to the Edge Router UI during activation may be able to perform a command injection attack that could lead to full control of the router...

7.4CVSS8.2AI score0.00411EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/04/03 12:0 a.m.7 views

The vulnerability of the user interface of the Edge Router microprogramming software for devices in the VMware SD-WAN Edge and VMware SD-WAN Orchestrator software platform for managing programmatically configurable networks allows a perpetrator to execute arbitrary commands.

The vulnerability of the Edge Router user interface of microprogramming software in VMware SD-WAN Edge and the VMware SD-WAN Orchestrator platform for managing programmatically configurable networks is related to the failure to eliminate special elements used in operating systems commands...

7.4CVSS7.5AI score0.00411EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2024/04/02 4:15 p.m.19 views

CVE-2024-22246

VMware SD-WAN Edge contains an unauthenticated command injection vulnerability potentially leading to remote code execution. A malicious actor with local access to the Edge Router UI during activation may be able to perform a command injection attack that could lead to full control of the router...

7.4CVSS7.8AI score0.00411EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/02 3:48 p.m.12 views

CVE-2024-22246

VMware SD-WAN Edge contains an unauthenticated command injection vulnerability potentially leading to remote code execution. A malicious actor with local access to the Edge Router UI during activation may be able to perform a command injection attack that could lead to full control of the router...

7.4CVSS7.9AI score0.00411EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/08/02 12:0 a.m.11 views

The vulnerability of the web interface of microprogramming software in VMware SD-WAN Edge devices allows a hacker to bypass security restrictions and gain access to read, modify, or delete data.

The vulnerability of the web interface of microprogramming software in VMware SD-WAN Edge devices is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and gain read, modify, or delete access to data by downloading the...

7.8CVSS7.2AI score0.00632EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/07/06 11:15 p.m.6 views

CVE-2023-20899

VMware SD-WAN Edge contains a bypass authentication vulnerability. An unauthenticated attacker can download the Diagnostic bundle of the application under VMware SD-WAN Management...

7.5CVSS7.1AI score0.00632EPSS
Exploits0References1
CNVD
CNVD
added 2018/06/05 12:0 a.m.3 views

VMware SD-WAN Edge Command Injection Vulnerability

VMware SD-WAN Edge is a networking and security virtualization platform from VMware. The platform provides virtual machines with programmable and portable virtual networks deployed on common IP network hardware. A command injection vulnerability exists in VMware SD-WAN Edge version 2.x and versio...

8.1CVSS8.3AI score0.86431EPSS
Exploits6References1
Arista
Arista
added 2018/05/13 12:0 a.m.14 views

Security Advisory 0129

Security Advisory 0129 PDF Date: December 23, 2025 Revision | Date | Changes ---|---|--- 1.0 | May 13, 2018 | Initial release 1.1 | December 23, 2025 | Updated to Arista Format NOTICE: VeloCloud is now an Arista product. Arista Networks has reposted this advisory that was originally posted by...

8.1CVSS6.9AI score0.86431EPSS
Exploits6
Rows per page
Query Builder