Versa Director
Easy fix5 remedies
cpe:2.3:a:versa-networks:versa_director:*:*:*:*:*:*:*
Easy fix5 remedies
- >= 22.1.4, < 22.1.4 February 8th Hot Fix
- >= 22.1.3, < 22.1.3
- >= 22.1.2, < 22.1.2
- >= 22.1.1, < 22.1.1
- >= 21.2.3, < 21.2.3
- >= 21.2.2, < 21.2.2
Versa Director SD-WAN Orchestration Platform Remote Code Execution Vulnerability via Cisco NCS Application Service
Vulnerability
Patched
A critical remote code execution vulnerability has been identified in the Versa Director SD-WAN orchestration platform, specifically in versions 22.1.1, 22.1.2, 22.1.3, and 21.2.2. This vulnerability arises from the application's use of Cisco NCS application service, where Active and Standby Directors communicate over TCP ports 4566 and 4570 to exchange High Availability (HA) information using a shared password. Affected versions of Versa Director are bound to these ports on all interfaces. An attacker with access to the Versa Director could exploit the NCS service on port 4566 to perform unauthorized administrative actions and execute remote code.
Impact
Exploitation of this vulnerability allows for remote code execution on the affected Versa Director instance.
Remediation
Users are advised to update to Versa Director version 22.1.4 or later. For versions 22.1.1, 22.1.2, 22.1.3, and 21.2.2, it is recommended to follow the Versa Director hardening guide to mitigate the vulnerability. After hardening, ensure to reset passwords for all users, both local and external, if external authentication was configured.
Added: Jun 19, 2025, 12:37 AM
Updated: Jun 19, 2025, 12:37 AM
Vulnerability Rating
Custom Algorithm
spread
0.8impact
7.5exploitability
4.4remediation
7.9relevance
0.2threat
0.1urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.