Vulnerabilidades em Versa
15 resultadosCVE-2025-34026CRITICALVersa Concerto Actuator Authentication Bypass Information LeakEPSS 83.4%KEVCVE-2025-34027CRITICALVersa Concerto Authentication Bypass File Write Remote Code ExecutionEPSS 34.6%CVE-2024-39717MEDIUMThe Versa Director GUI provides an option to customize the look and feel of the user interface. This option is only available for a user logEPSS 4.0%KEVCVE-2025-23172HIGHThe Versa Director SD-WAN orchestration platform includes a Webhook feature for sending notifications to external HTTP endpoints. However, tEPSS 0.9%CVE-2024-45208CRITICALThe Versa Director SD-WAN orchestration platform which makes use of Cisco NCS application service. Active and Standby Directors communicate EPSS 0.7%CVE-2025-23170MEDIUMThe Versa Director SD-WAN orchestration platform includes functionality to initiate SSH sessions to remote CPEs and the Director shell via SEPSS 0.6%CVE-2024-42450CRITICALThe Versa Director uses PostgreSQL (Postgres) to store operational and configuration data. It is also needed for High Availability function EPSS 0.6%CVE-2025-23173HIGHThe Versa Director SD-WAN orchestration platform provides direct web-based access to uCPE virtual machines through the Director GUI. By defaEPSS 0.5%CVE-2024-45229MEDIUMThe Versa Director offers REST APIs for orchestration and management. By design, certain APIs, such as the login screen, banner display, andEPSS 0.5%CVE-2025-23171HIGHThe Versa Director SD-WAN orchestration platform provides an option to upload various types of files. The Versa Director does not correctly EPSS 0.5%CVE-2025-24288CRITICALThe Versa Director software exposes a number of services by default and allow attackers an easy foothold due to default credentials and multEPSS 0.4%CVE-2025-34025HIGHVersa Concerto Insecure Docker Mount Container EscapeEPSS 0.4%CVE-2025-24291MEDIUMThe Versa Director SD-WAN orchestration platform provides functionality to upload various types of files. However, the Java code handling fiEPSS 0.3%CVE-2025-23168MEDIUMThe Versa Director SD-WAN orchestration platform implements Two-Factor Authentication (2FA) using One-Time Passcodes (OTP) delivered via emaEPSS 0.3%CVE-2025-23169MEDIUMThe Versa Director SD-WAN orchestration platform allows customization of the user interface, including the header, footer, and logo. HoweverEPSS 0.3%