Vulnerability Description
The Versa Concerto SD-WAN orchestration platform is vulnerable to an privileges escalation and container escape vulnerability caused by unsafe default mounting of host binary paths that allow the container to modify host paths. The escape can be used to trigger remote code execution or direct host access depending on the host operating system configuration.This issue is known to affect Concerto from 12.1.2 through 12.2.0. Additional versions may be vulnerable.
Related Weaknesses (CWE)
References
- https://projectdiscovery.io/blog/versa-concerto-authentication-bypass-rce
- https://projectdiscovery.io/blog/versa-concerto-authentication-bypass-rce
FAQ
What is CVE-2025-34025?
CVE-2025-34025 is a documented vulnerability. The Versa Concerto SD-WAN orchestration platform is vulnerable to an privileges escalation and container escape vulnerability caused by unsafe default mounting of host binary paths that allow the cont...
How severe is CVE-2025-34025?
CVSS scoring is not yet available for CVE-2025-34025. Check NVD for updates.
Is there a patch for CVE-2025-34025?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.