Security Advisory

CVE-2025-22217

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-28 18:33:36

Last updated 2026-02-26 19:08:56

Assigner vmware

State PUBLISHED

Description

Avi Load Balancer contains an unauthenticated blind SQL Injection vulnerability which was privately reported to VMware. Patches are available to remediate this vulnerability in affected VMware products. A malicious user with network access may be able to use specially crafted SQL queries to gain database access.

← Browse all CVEs View on cve.org ↗