CVE-2024-22264

Summary

VMware Avi Load Balancer contains a privilege escalation vulnerability. A malicious actor with admin privileges on VMware Avi Load Balancer can create, modify, execute and delete files as a root user on the host system.

Affected Software

VendorProductVersion RangeStatus
VMwareVMware Avi Load Balancer22.1.x < 22.1.6affected
VMwareVMware Avi Load Balancer30.x.x < 30.2.1affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References