CVE-2022-38368

Published: 2022-08-15T22:15Z

Last Modified: 2024-11-21T07:16Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An issue was discovered in Aviatrix Gateway before 6.6.5712 and 6.7.x before 6.7.1376. Because Gateway API functions mishandle authentication, an authenticated VPN user can inject arbitrary commands. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt