Vulnerabilities > Aviatrix > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-04-21 CVE-2020-27569 Incorrect Default Permissions vulnerability in Aviatrix Openvpn
Arbitrary File Write exists in Aviatrix VPN Client 2.8.2 and earlier.
network
low complexity
aviatrix CWE-276
5.0
5.0
2021-04-21 CVE-2020-27568 Incorrect Permission Assignment for Critical Resource vulnerability in Aviatrix Controller 5.3.1516
Insecure File Permissions exist in Aviatrix Controller 5.3.1516.
network
low complexity
aviatrix CWE-732
5.0
5.0
2020-11-17 CVE-2020-26552 Inadequate Encryption Strength vulnerability in Aviatrix Controller 5.3.1516
An issue was discovered in Aviatrix Controller before R6.0.2483.
network
low complexity
aviatrix CWE-326
5.0
5.0
2020-11-17 CVE-2020-26551 Cleartext Storage of Sensitive Information vulnerability in Aviatrix Controller 5.3.1516
An issue was discovered in Aviatrix Controller before R5.3.1151.
network
low complexity
aviatrix CWE-312
5.0
5.0
2020-11-17 CVE-2020-26550 Insufficiently Protected Credentials vulnerability in Aviatrix Controller 5.3.1516
An issue was discovered in Aviatrix Controller before R5.3.1151.
network
low complexity
aviatrix CWE-522
5.0
5.0
2020-11-17 CVE-2020-26549 Files or Directories Accessible to External Parties vulnerability in Aviatrix Controller 5.3.1516
An issue was discovered in Aviatrix Controller before R5.4.1290.
network
low complexity
aviatrix CWE-552
5.0
5.0
2020-05-22 CVE-2020-13416 Cross-Site Request Forgery (CSRF) vulnerability in Aviatrix Controller
An issue was discovered in Aviatrix Controller before 5.4.1066.
network
aviatrix CWE-352
4.3
4.3
2020-05-22 CVE-2020-13415 Improper Verification of Cryptographic Signature vulnerability in Aviatrix Controller
An issue was discovered in Aviatrix Controller through 5.1.
network
low complexity
aviatrix CWE-347
5.0
5.0
2020-05-22 CVE-2020-13414 Use of Hard-coded Credentials vulnerability in Aviatrix Controller
An issue was discovered in Aviatrix Controller before 5.4.1204.
network
low complexity
aviatrix CWE-798
5.0
5.0
2020-05-22 CVE-2020-13413 Information Exposure Through Discrepancy vulnerability in Aviatrix Controller
An issue was discovered in Aviatrix Controller before 5.4.1204.
network
low complexity
aviatrix CWE-203
5.0
5.0