VMSA-2025-0002: VMware Avi Load Balancer addresses an unauthenticated blind SQL Injection vulnerability (CVE-2025-22217)
Advisory ID: VMSA-2024-0002
Severity: Important
CVSSv3 Range: 8.6
Synopsis:
VMware Avi Load Balancer addresses an unauthenticated blind SQL Injection vulnerability (CVE-2025-22217)
Issue date: 2025-01-28
CVE(s) CVE-2025-22217
Impacted Products
VMware Avi Load Balancer
Introduction
Avi Load Balancer contains an unauthenticated blind SQL Injection vulnerability which was privately reported to VMware. Patches are available to remediate this vulnerability in affected VMware products.
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25346
>>Click here to continue<<