CVE-2025-2171 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Aviatrix Controller versions prior to 7.1.4208, 7.2.5090, and 8.0.0 do not enforce rate limiting on password reset attempts, allowing adversaries to brute force…
High CVSS: 7.8

CVE-2025-2171

Aviatrix Controller versions prior to 7.1.4208, 7.2.5090, and 8.0.0 do not enforce rate limiting on password reset attempts, allowing adversaries to brute force guess the 6-digit password reset PIN
Vendor
-
Product
-
CWE
CWE-307
Yayın Tarihi
2025-06-23 14:15:26
Güncelleme
2025-06-23 20:16:21
Source Identifier
mandiant-cve@google.com
KEV Date Added
-

Kategoriler

CWE-307 HIGH 2025

Referanslar

https://cloud.google.com/blog/topics/threat-intelligence/remote-code-execution-aviatrix-controller https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2025/MNDT-2025-0003.md