PT-2026-60427 · Vmware · Avi Load Balancer
CVE-2026-47870
·
Published
2026-07-16
·
Updated
2026-07-18
CVSS v3.1
7.1
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
VMware Avi Load Balancer version 32.1.1
VMware Avi Load Balancer versions 31.1.1 through 31.2.2
VMware Avi Load Balancer versions 30.1.1 through 30.2.6
VMware Avi Load Balancer versions 22.1.1 through 22.1.7
Description
An authenticated user with network access can escalate privileges, which may allow for the execution of remote code.
Recommendations
Update version 32.1.1 to 32.1.2.
Update versions 31.1.1 through 31.2.2 to 31.2.2-2p3.
Update versions 30.1.1 through 30.2.6 to 30.2.7.
Update versions 22.1.1 through 22.1.7 to 30.2.7.
Fix
Improper Privilege Management
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Avi Load Balancer