CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Aviatrix: >> Controller >> 5.3.1516 Security Vulnerabilities

CVE-2020-13414

An issue was discovered in Aviatrix Controller before 5.4.1204. It contains credentials unused by the software.

CVSS Score

7.5

EPSS Score

0.006

Published

2020-05-22

CVE-2020-13416

An issue was discovered in Aviatrix Controller before 5.4.1066. A Controller Web Interface session token parameter is not required on an API call, which opens the application up to a Cross Site Request Forgery (CSRF) vulnerability for password resets.

CVSS Score

6.5

EPSS Score

0.002

Published

2020-05-22

Page 2

Vulnerabilities

Vulnerable Software

Aviatrix: >> Controller >> 5.3.1516 Security Vulnerabilities

Products

Pricing

Contact Us