An issue was discovered in Aviatrix Controller before 5.4.1204. It contains credentials unused by the software.
7.5CVSS
7.5AI Score
0.003EPSS
An Elevation of Privilege issue was discovered in Aviatrix VPN Client before 2.10.7, because of an incomplete fix for CVE-2020-7224. This affects Linux, macOS, and Windows installations for certain OpenSSL parameters.
9.8CVSS
9.4AI Score
0.004EPSS
An issue was discovered in Aviatrix Gateway before 6.6.5712 and 6.7.x before 6.7.1376. Because Gateway API functions mishandle authentication, an authenticated VPN user can inject arbitrary commands.
8.8CVSS
8.5AI Score
0.001EPSS