CVE-2024-22246 Information

Description

VMware SD-WAN Edge contains an unauthenticated command injection vulnerability potentially leading to remote code execution.

A malicious actor with local access to the Edge Router UI during activation may be able to perform a command injection attack that could lead to full control of the router.

Reference

https://www.vmware.com/security/advisories/VMSA-2024-0008.html