CVE-2021-40870
9.8 CRITICALAn issue was discovered in Aviatrix Controller 6.x before 6.5-1804.1922
Published: 2021-09-13 · Last updated: 2026-06-17
Severity and scoring
- CVSS
- 9.8 CRITICAL
- Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- CWE
- CWE-23
Affected products
| Vendor | Product |
|---|---|
| aviatrix | controller |
Description
An issue was discovered in Aviatrix Controller 6.x before 6.5-1804.1922. Unrestricted upload of a file with a dangerous type is possible, which allows an unauthenticated user to execute arbitrary code via directory traversal.
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2021-40870
- [Exploit reference]http://packetstormsecurity.com/files/164461/Aviatrix-Controller-6.x-Path-Traversal-Code-Execution.html
- [Vendor advisory]https://docs.aviatrix.com/HowTos/UCC_Release_Notes.html#security-note-9-11-2021
- [Exploit reference]https://wearetradecraft.com/advisories/tc-2021-0002/
- [Exploit reference]http://packetstormsecurity.com/files/164461/Aviatrix-Controller-6.x-Path-Traversal-Code-Execution.html
- [Vendor advisory]https://docs.aviatrix.com/HowTos/UCC_Release_Notes.html#security-note-9-11-2021
- [Exploit reference]https://wearetradecraft.com/advisories/tc-2021-0002/
- [Other]https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-40870
Related CVEs
Same CWE
- CVE-2026-34026 — Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains a path traversal vulnerability in the documentName parameter ...
- CVE-2026-48569 — Improper input validation in Visual Studio Code allows an unauthorized attacker to bypass a security feature locally (7.1 HIGH)
- CVE-2026-47287 — Relative path traversal in Visual Studio Code allows an unauthorized attacker to perform tampering over a network (6.5 MEDIUM)
- CVE-2026-48681 — OpenStack Ironic through before 35.0.2 allows file overwrite via directory traversal during deployment with a crafted ISO image (5.9 MEDIUM)
- CVE-2026-5422 — A path traversal vulnerability exists in jupyter-server version 2.17.0 due to an incorrect root directory boundary check in the _get_os_p... (8.1 HIGH)