VMware SD-WAN Edge contains an unauthenticated command...
High severity
Unreviewed
Published
Apr 2, 2024
to the GitHub Advisory Database
•
Updated Jul 3, 2024
Description
Published by the National Vulnerability Database
Apr 2, 2024
Published to the GitHub Advisory Database
Apr 2, 2024
Last updated
Jul 3, 2024
VMware SD-WAN Edge contains an unauthenticated command injection vulnerability potentially leading to remote code execution.
A malicious actor with local access to the Edge Router UI during
activation may be able to perform a command injection attack that could
lead to full control of the router.
References