CVE-2025-34025

Name of the Vulnerable Software and Affected Versions Versa Concerto versions 12.1.2 through 12.2.0

Description The Versa Concerto SD-WAN orchestration platform contains a flaw related to improper permission assignment for a critical resource during certificate signing request validation. This can lead to privilege escalation and container escape. The unsafe default mounting of host binary paths allows a container to modify host paths. Successful exploitation of this issue may allow an attacker to execute arbitrary code or gain direct access to the host, depending on the host operating system configuration.

Recommendations Versions 12.1.2 through 12.2.0 should be updated when a patch becomes available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.