CVE-2024-50603

CRITICAL KEV NUCLEI

Aviatrix Controller < 7.1.4191 and 7.2.x < 7.2.4996 - Unauthenticated Remote Code Execution via cloud_type Parameter

Title source: llm

Exploitation Summary

CVE-2024-50603 is actively exploited and listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, added January 16, 2025. EIP tracks 2 public exploits from researchers including th3gokul, newlinesec. A Nuclei detection template is also available.

AI-analyzed exploit summary The repository contains a Python-based tool for detecting and exploiting CVE-2024-50603, an unauthenticated command injection vulnerability in Aviatrix Controller. The tool uses asynchronous HTTP requests to interact with a third-party API for SSRF testing and vulnerability verification.

Description

An issue was discovered in Aviatrix Controller before 7.1.4191 and 7.2.x before 7.2.4996. Due to the improper neutralization of special elements used in an OS command, an unauthenticated attacker is able to execute arbitrary code. Shell metacharacters can be sent to /v1/api in cloud_type for list_flightpath_destination_instances, or src_cloud_type for flightpath_connection_test.

Exploits (2)

nomisec WORKING POC 17 stars

by th3gokul · infoleak

https://github.com/th3gokul/CVE-2024-50603

View Code ZIP pw:eip

The repository contains a Python-based tool for detecting and exploiting CVE-2024-50603, an unauthenticated command injection vulnerability in Aviatrix Controller. The tool uses asynchronous HTTP requests to interact with a third-party API for SSRF testing and vulnerability verification.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Aviatrix Controller

No auth needed

Prerequisites: Network access to the target Aviatrix Controller · Python environment with required dependencies

MITRE ATT&CK

T1189 - Drive-by Compromise T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec STUB 7 stars

by newlinesec · remote

https://github.com/newlinesec/CVE-2024-50603

View Code ZIP pw:eip

The repository contains only a README.md file with minimal information, lacking any functional exploit code or technical details. It appears to be a placeholder or incomplete submission.

Classification

Stub 10%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: unknown

No auth needed

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

Aviatrix Controller - Remote Code Execution

CRITICALVERIFIEDby newlinesec,securing.pl

Shodan: http.title:"aviatrix controller" || http.title:"aviatrix cloud controller"

FOFA: app="aviatrix-controller" || title="aviatrix cloud controller"

References (4)

Core 4

Core References

Product

https://docs.aviatrix.com/documentation/latest/network-security/index.html

Vendor Advisory

https://docs.aviatrix.com/documentation/latest/release-notices/psirt-advisories/psirt-advisories.html?expand=true#remote-code-execution-vulnerability-in-aviatrix-controllers

Exploit, Third Party Advisory

https://www.securing.pl/en/cve-2024-50603-aviatrix-network-controller-command-injection-vulnerability/

US Government Resource

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-50603

Scores

CVSS v3 10.0

EPSS 0.9436

EPSS Percentile 100.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation active

Automatable yes

Technical Impact total

Details

CISA KEV 2025-01-16

VulnCheck KEV 2025-01-07

ENISA EUVD EUVD-2024-44623

CWE

CWE-78

Status published

Products (1)

aviatrix/controller < 7.1.4191

Published Jan 08, 2025

KEV Added Jan 16, 2025

Tracked Since Feb 18, 2026