VYPR

Concerto SD-WAN

by Versa Networks

CVEs (1)

  • CVE-2025-34027CriMay 21, 2025
    risk 0.68cvss epss 0.36

    The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The Spack upload endpoint can be leveraged for a Time-of-Check to Time-of-Use (TOCTOU)…