VYPR

VMware Avi Load Balancer

by Broadcom Corporation

CVEs (3)

  • CVE-2025-22217HigJan 28, 2025
    risk 0.56cvss 8.6epss 0.01

    Avi Load Balancer contains an unauthenticated blind SQL Injection vulnerability which was privately reported to VMware. Patches are available to remediate this vulnerability in affected VMware products.  A malicious user with network access may be able to use specially crafted…

  • CVE-2025-41233MedJun 12, 2025
    risk 0.44cvss 6.8epss 0.00

    Description: VMware AVI Load Balancer contains an authenticated blind SQL Injection vulnerability. VMware has evaluated the severity of the issue to be in the Moderate severity range https://www.broadcom.com/support/vmware-services/security-response  with a maximum CVSSv3…

  • CVE-2024-22266MedMay 8, 2024
    risk 0.42cvss 6.5epss 0.00

     VMware Avi Load Balancer contains an information disclosure vulnerability. A malicious actor with access to the system logs can view cloud connection credentials in plaintext.