CNNVD-202506-2522 Information

CNNVD ID

CNNVD-202506-2522

Related CVE

CVE-2025-23170

• CNNVD Published: 2025-06-18

Description (Chinese)

Versa Director是美国Versa公司的一个虚拟化和服务创建平台。可简化使用Versa FlexVNF的服务创建，自动化和交付。 Versa Director存在安全漏洞，该漏洞源于shell-connect.py脚本存在命令注入漏洞，可能导致执行任意命令。

Description (English)

Versa Director is a virtualization and service creation platform for Versa in the United States. Services created, automated and delivered using Versa FlexVNF could be streamlined. Versa Director had a security loophole, which stemmed from the existence of a shell-connect.py script with orders that could lead to arbitrary orders being executed.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Versa

Published

2025-06-18

Last Modified

2026-02-24

References

https://nvd.nist.gov/vuln/detail/CVE-2025-23170

Patch

https://support.versa-networks.com/support/solutions/articles/23000026308-versa-director-installation