Vulnerabilities in Aviatrix

3 results

CVE-2024-50603CRITICALAn issue was discovered in Aviatrix Controller before 7.1.4191 and 7.2.x before 7.2.4996. Due to the improper neutralization of special elemEPSS 98.5%KEV CVE-2025-2172MEDIUMAviatrix Controller versions prior to 7.1.4208, 7.2.5090, and 8.0.0 fail to sanitize user input prior to passing the input to command line uEPSS 7.5%CVE-2025-2171HIGHAviatrix Controller versions prior to 7.1.4208, 7.2.5090, and 8.0.0 do not enforce rate limiting on password reset attempts, allowing adversEPSS 0.5%