Aviatrix Controller, a critical platform for network security and multi-cloud networking used to manage multi-cloud environments across major providers such as AWS, Azure, and GCP, is vulnerable to an unauthenticated remote code execution vulnerability. With over 30,000 instances exposed to the internet, this vulnerability represents a very large attack surface. The affected versions are widely distributed in enterprise environments, and the controller’s privileged access to cloud network configurations makes it a high-value target.
| Product | Aviatrix Controller |
| Date | 2025-01-13 09:25:58 |
| Information |
|
Technical Summary
An issue has been discovered in Aviatrix Controller in versions prior to 7.1.4191 and in 7.2.x before 7.2.4996. Due to the failure to neutralize special elements used in an operating system command, an unauthenticated attacker is able to execute arbitrary code. Shell metacharacters can be sent to /v1/api in the cloud_type parameter for list_flightpath_destination_instances, or in the src_cloud_type parameter for flightpath_connection_test.
This vulnerability allows for remote code execution with root privileges, potentially enabling attackers to:
- Gain complete control of the Aviatrix Controller
- Access sensitive network configurations
- Compromise connected cloud environments
- Exfiltrate sensitive data
Recommendations
- Update to version
7.1.4191or later of the Aviatrix Controller for7.1.xreleases - Update to version
7.2.4996or later of the Aviatrix Controller for7.2.xreleases - Implement network segmentation to limit access to the Aviatrix Controller
- Monitor suspicious API requests to the
/v1/apiendpoint - Apply the principle of least privilege to all system accounts
[Callforaction-THREAT-Footer]
