Vulnerabilities > Aviatrix > High

DATE CVE VULNERABILITY TITLE RISK
2022-08-15 CVE-2022-38368 Improper Authentication vulnerability in Aviatrix Gateway
An issue was discovered in Aviatrix Gateway before 6.6.5712 and 6.7.x before 6.7.1376.
network
low complexity
aviatrix CWE-287
8.8
2021-04-29 CVE-2021-31776 Unquoted Search Path or Element vulnerability in Aviatrix VPN Client
Aviatrix VPN Client before 2.14.14 on Windows has an unquoted search path that enables local privilege escalation to the SYSTEM user, if the machine is misconfigured to allow unprivileged users to write to directories that are supposed to be restricted to administrators.
local
low complexity
aviatrix CWE-428
7.8
2021-04-21 CVE-2020-27569 Incorrect Default Permissions vulnerability in Aviatrix Openvpn
Arbitrary File Write exists in Aviatrix VPN Client 2.8.2 and earlier.
network
low complexity
aviatrix CWE-276
7.5
2021-04-21 CVE-2020-27568 Incorrect Permission Assignment for Critical Resource vulnerability in Aviatrix Controller 5.3.1516
Insecure File Permissions exist in Aviatrix Controller 5.3.1516.
network
low complexity
aviatrix CWE-732
7.5
2020-11-17 CVE-2020-26552 Unspecified vulnerability in Aviatrix Controller 5.3.1516
An issue was discovered in Aviatrix Controller before R6.0.2483.
network
low complexity
aviatrix
7.5
2020-11-17 CVE-2020-26551 Cleartext Storage of Sensitive Information vulnerability in Aviatrix Controller 5.3.1516
An issue was discovered in Aviatrix Controller before R5.3.1151.
network
low complexity
aviatrix CWE-312
7.5
2020-11-17 CVE-2020-26550 Use of Insufficiently Random Values vulnerability in Aviatrix Controller 5.3.1516
An issue was discovered in Aviatrix Controller before R5.3.1151.
network
low complexity
aviatrix CWE-330
7.5
2020-11-17 CVE-2020-26549 Files or Directories Accessible to External Parties vulnerability in Aviatrix Controller 5.3.1516
An issue was discovered in Aviatrix Controller before R5.4.1290.
network
low complexity
aviatrix CWE-552
7.5
2020-11-17 CVE-2020-26548 Unspecified vulnerability in Aviatrix Controller 5.3.1516
An issue was discovered in Aviatrix Controller before R5.4.1290.
network
low complexity
aviatrix
8.8
2020-05-22 CVE-2020-13415 Improper Verification of Cryptographic Signature vulnerability in Aviatrix Controller
An issue was discovered in Aviatrix Controller through 5.1.
network
low complexity
aviatrix CWE-347
7.5