Security News > 2025 > January > Hackers exploit critical Aviatrix Controller RCE flaw in attacks

Hackers exploit critical Aviatrix Controller RCE flaw in attacks

2025-01-13 17:57

Threat actors are exploiting a critical remote command execution vulnerability, tracked as CVE-2024-50603, in Aviatrix Controller instances to install backdoors and crypto miners. [...]

News URL

https://www.bleepingcomputer.com/news/security/hackers-exploit-critical-aviatrix-controller-rce-flaw-in-attacks/

#attack #critical #exploit #hacker #RCE #CVE-2024-50603

Related news

Hackers exploit critical bug in Array Networks SSL VPN products (source)
Exploit released for critical WhatsUp Gold RCE flaw, patch now (source)
PoC exploit for critical WhatsUp Gold RCE vulnerability released (CVE-2024-8785) (source)
Hackers breach US firm over Wi-Fi from Russia in 'Nearest Neighbor Attack' (source)
1000s of Palo Alto Networks firewalls hijacked as miscreants exploit critical hole (source)
CISA Urges Agencies to Patch Critical "Array Networks" Flaw Amid Active Attacks (source)
Critical WordPress Anti-Spam Plugin Flaws Expose 200,000+ Sites to Remote Attacks (source)
APT-C-60 Hackers Exploit StatCounter and Bitbucket in SpyGlace Malware Campaign (source)
Hackers exploit ProjectSend flaw to backdoor exposed servers (source)
North Korean Kimsuky Hackers Use Russian Email Addresses for Credential Theft Attacks (source)

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2025-01-08	CVE-2024-50603	An issue was discovered in Aviatrix Controller before 7.1.4191 and 7.2.x before 7.2.4996.	0.0

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Aviatrix		4	0	2	14	4	20

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.