External risk intelligence

Aviatrix Controller Code Execution Vulnerability.

CVE advisoryKnown Exploit

CVE-2021-40870

An unrestricted file upload vulnerability in Aviatrix Controller allows unauthenticated users to execute arbitrary code via directory traversal. This poses a business risk of operational disruption and data compromise.

5Halo Surface Signal

Path Traversal

Aviatrix Controller

6.2 to before 6.2.20436.3 to before 6.3.24906.4 to before 6.4.28386.5 to before 6.5.1922

External exposure likelihood

Halo Surface Signal score for CVE-2021-40870

The product is a network controller appliance designed to manage cloud and network infrastructure. These devices act as gateways or management portals and are frequently deployed in public-facing or edge positions to facilitate connectivity, making them commonly reachable services by design.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Horizon Alert

Summary of the vulnerability and why it matters

An issue has been identified in Aviatrix Controller. This vulnerability allows an unauthenticated user to upload a malicious file, potentially leading to the execution of arbitrary code on the system. This could result in a significant disruption to business operations and compromise sensitive data.

  • Aviatrix Controller
  • Unrestricted file upload flaw
  • Arbitrary code execution

Attack Path

How an attacker could exploit the issue

An unauthenticated user can exploit an unrestricted file upload vulnerability in Aviatrix Controller. This allows an attacker to traverse directories and execute arbitrary code. The vulnerability exists in Aviatrix Controller versions 6.x before 6.5-1804.1922.

  • Exposed to the network.
  • Attacker uploads a dangerous file.
  • Arbitrary code execution.

Live Threat

Current exploitation, exposure, and threat context

Attackers with a high degree of technical skill could exploit this vulnerability. The exploit requires no prior access to the system and can be performed over the network. Successful exploitation could allow an attacker to execute arbitrary code, leading to a significant compromise of business operations and data. Organizations should treat this vulnerability with a high level of urgency.

  • Likely attacker skill level: Expert
  • Required access or conditions: Unauthenticated, network accessible
  • Business risk or urgency: High

Priority actions

Operational Fix

Recommended remediation, mitigation, and detection steps

This critical vulnerability in Aviatrix Controller could allow an unauthenticated user to execute arbitrary code. Organizations should act swiftly to address this risk. The vulnerability enables directory traversal, allowing unrestricted file uploads with dangerous types. This could lead to significant business disruption and compromise of sensitive data.

  • Identify all Aviatrix Controller assets.
  • Reduce exposure of affected systems.
  • Apply vendor fix and validate.
  • Monitor for related activity.

Frequently asked questions

What is the unrestricted file upload vulnerability in Aviatrix Controller versions 6.x before 6.5-1804.1922?

An unrestricted file upload vulnerability exists in Aviatrix Controller versions 6.x before 6.5-1804.1922. This flaw allows an unauthenticated user to upload a file with a dangerous type, enabling directory traversal and arbitrary code execution.

What is the weakness class and impact of CVE-2021-40870 in Aviatrix Controller?

The weakness class is CWE-23 (Directory Traversal). This vulnerability, CVE-2021-40870, allows an unauthenticated user to execute arbitrary code by uploading a file with a dangerous type, leading to directory traversal.

How can an attacker exploit the Aviatrix Controller vulnerability and what is the scope of impact?

An attacker can exploit this vulnerability by uploading a file with a dangerous type via an unrestricted upload, which then allows for directory traversal. The scope is System: Unknown, as the attacker can execute arbitrary code, potentially impacting the entire system.

What is the relevance of Aviatrix Controller CVE-2021-40870, and why is it considered very likely to be exploited?

Aviatrix Controller CVE-2021-40870 is highly relevant because it allows unauthenticated remote code execution. Halo Surface Signal indicates it's very likely to be exploited due to the product's nature as a network controller often positioned in accessible locations for managing cloud and network infrastructure.

What practical steps should be taken to address the Aviatrix Controller vulnerability?

To address this critical vulnerability, organizations should identify all Aviatrix Controller assets, reduce the exposure of affected systems, and apply the vendor's fix promptly. It is also crucial to validate the fix and monitor for any related malicious activity.

References

Sources and related resources

Primary sources: NVD, CVE.org, CISA KEV.

NVDPublished Modified