Security News > 2025 > January > Hackers exploit critical Aviatrix Controller RCE flaw in attacks
2025-01-13 17:57
Threat actors are exploiting a critical remote command execution vulnerability, tracked as CVE-2024-50603, in Aviatrix Controller instances to install backdoors and crypto miners. [...]
News URL
Related news
- Critical SimpleHelp Flaws Allow File Theft, Privilege Escalation, and RCE Attacks (source)
- Hackers exploit critical unpatched flaw in Zyxel CPE devices (source)
- Critical RCE bug in Microsoft Outlook now exploited in attacks (source)
- Hackers exploit Cityworks RCE bug to breach Microsoft IIS servers (source)
- Chinese Hackers Exploit MAVInject.exe to Evade Detection in Targeted Cyber Attacks (source)
- FICORA and Kaiten Botnets Exploit Old D-Link Vulnerabilities for Global Attacks (source)
- Hackers exploit DoS flaw to disable Palo Alto Networks firewalls (source)
- Malware botnets exploit outdated D-Link routers in recent attacks (source)
- Hackers exploit Four-Faith router flaw to open reverse shells (source)
- Chinese hackers targeted sanctions office in Treasury attack (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-08 | CVE-2024-50603 | OS Command Injection vulnerability in Aviatrix Controller An issue was discovered in Aviatrix Controller before 7.1.4191 and 7.2.x before 7.2.4996. | 9.8 |