Versa Concerto vulnerabilities
3 known vulnerabilities affecting versa/concerto.
Total CVEs
3
CISA KEV
1
actively exploited
Public exploits
2
Exploited in wild
2
Severity breakdown
CRITICAL1HIGH2
Vulnerabilities
Page 1 of 1
CVE-2025-34026P1HIGHCVSS 7.5KEVPoC≥ 12.1.2, ≤ 12.2.02025-05-21
CVE-2025-34026 [HIGH] CWE-288 CVE-2025-34026: The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Tr
The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The internal Actuator endpoint can be leveraged for access to heap dumps and trace logs.This issue is known to affect Concerto from 12.1.2 through 12.2.0. Additi
nvd
CVE-2025-34027P1CRITICALCVSS 10.0ExploitedPoC≥ 12.1.2, ≤ 12.2.02025-05-21
CVE-2025-34027 [CRITICAL] CWE-367 CVE-2025-34027: The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Tr
The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The Spack upload endpoint can be leveraged for a Time-of-Check to Time-of-Use (TOCTOU) write in combination with a race condition to achieve remote code exec
nvd
CVE-2025-34025P3HIGHCVSS 8.6≥ 12.1.2, ≤ 12.2.02025-05-21
CVE-2025-34025 [HIGH] CWE-732 CVE-2025-34025: The Versa Concerto SD-WAN orchestration platform is vulnerable to an privileges escalation and conta
The Versa Concerto SD-WAN orchestration platform is vulnerable to an privileges escalation and container escape vulnerability caused by unsafe default mounting of host binary paths that allow the container to modify host paths. The escape can be used to trigger remote code execution or direct host access depending on the host operating system configur
nvd