Vulnerabilities > Aviatrix > Controller

DATE CVE VULNERABILITY TITLE RISK
2021-09-13 CVE-2021-40870 Relative Path Traversal vulnerability in Aviatrix Controller
An issue was discovered in Aviatrix Controller 6.x before 6.5-1804.1922.
network
low complexity
aviatrix CWE-23
critical
 9.8
9.8
2021-04-21 CVE-2020-27568 Incorrect Permission Assignment for Critical Resource vulnerability in Aviatrix Controller 5.3.1516
Insecure File Permissions exist in Aviatrix Controller 5.3.1516.
network
low complexity
aviatrix CWE-732
7.5
7.5
2020-11-17 CVE-2020-26553 Unrestricted Upload of File with Dangerous Type vulnerability in Aviatrix Controller 5.3.1516
An issue was discovered in Aviatrix Controller before R6.0.2483.
network
low complexity
aviatrix CWE-434
critical
 9.8
9.8
2020-11-17 CVE-2020-26552 Unspecified vulnerability in Aviatrix Controller 5.3.1516
An issue was discovered in Aviatrix Controller before R6.0.2483.
network
low complexity
aviatrix
7.5
7.5
2020-11-17 CVE-2020-26551 Cleartext Storage of Sensitive Information vulnerability in Aviatrix Controller 5.3.1516
An issue was discovered in Aviatrix Controller before R5.3.1151.
network
low complexity
aviatrix CWE-312
7.5
7.5
2020-11-17 CVE-2020-26550 Use of Insufficiently Random Values vulnerability in Aviatrix Controller 5.3.1516
An issue was discovered in Aviatrix Controller before R5.3.1151.
network
low complexity
aviatrix CWE-330
7.5
7.5
2020-11-17 CVE-2020-26549 Files or Directories Accessible to External Parties vulnerability in Aviatrix Controller 5.3.1516
An issue was discovered in Aviatrix Controller before R5.4.1290.
network
low complexity
aviatrix CWE-552
7.5
7.5
2020-11-17 CVE-2020-26548 Unspecified vulnerability in Aviatrix Controller 5.3.1516
An issue was discovered in Aviatrix Controller before R5.4.1290.
network
low complexity
aviatrix
8.8
8.8
2020-05-22 CVE-2020-13417 Unspecified vulnerability in Aviatrix Controller and Gateway
An Elevation of Privilege issue was discovered in Aviatrix VPN Client before 2.10.7, because of an incomplete fix for CVE-2020-7224.
network
low complexity
aviatrix
critical
 9.8
9.8
2020-05-22 CVE-2020-13416 Cross-Site Request Forgery (CSRF) vulnerability in Aviatrix Controller
An issue was discovered in Aviatrix Controller before 5.4.1066.
network
low complexity
aviatrix CWE-352
6.5
6.5