CVE-2024-45208

Name of the Vulnerable Software and Affected Versions Versa Director SD-WAN orchestration platform (affected versions not specified)

Description The issue affects the Versa Director SD-WAN orchestration platform, which utilizes the Cisco NCS application service. Active and Standby Directors communicate over TCP ports 4566 and 4570 to exchange High Availability (HA) information using a shared password. An attacker with access to the Versa Director could exploit this to perform unauthorized administrative actions and achieve remote code execution on the NCS service via port 4566. Versa Networks is not aware of any reported instances where this issue was exploited, but a proof of concept has been disclosed by third-party security researchers.

Recommendations Follow the hardening guide to secure the Versa Director SD-WAN orchestration platform. As a temporary workaround, consider restricting access to TCP ports 4566 and 4570 to minimize the risk of exploitation. Avoid using the shared password for High Availability (HA) information exchange until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.