CVE-2025-34026
Published May 21, 2025
Last updated 18 days ago
AI description
CVE-2025-34026 describes an authentication bypass vulnerability found within the Versa Concerto SD-WAN orchestration platform. This flaw stems from a misconfiguration in the Traefik reverse proxy, or an improper reliance on the X-Real-Ip header, which allows an attacker to circumvent authentication mechanisms. Successful exploitation of this vulnerability grants unauthorized access to administrative endpoints. Furthermore, attackers can leverage internal Actuator endpoints to retrieve sensitive data such as heap dumps and trace logs, which may contain credentials, session tokens, and other critical system information. The issue is known to affect Versa Concerto versions 12.1.2 through 12.2.0, and potentially other versions.
- Description
- The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The internal Actuator endpoint can be leveraged for access to heap dumps and trace logs.This issue is known to affect Concerto from 12.1.2 through 12.2.0. Additional versions may be vulnerable.
- Source
- disclosure@vulncheck.com
- NVD status
- Analyzed
- Products
- concerto
CVSS 4.0
- Type
- Secondary
- Base score
- 9.2
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- CRITICAL
CVSS 3.1
- Type
- Primary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
- Severity
- HIGH
Data from CISA
- Vulnerability name
- Versa Concerto Improper Authentication Vulnerability
- Exploit added on
- Jan 22, 2026
- Exploit action due
- Feb 12, 2026
- Required action
- Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- disclosure@vulncheck.com
- CWE-288
- Hype score
- Not currently trending
๐จ CISA Flags Actively Exploited Vite, Prettier, Versa, and Zimbra Flaws in KEV Catalog CISA added four actively exploited issues to its KEV list, including Vite file exposure (CVE-2025-31125), a Versa Concerto auth bypass (CVE-2025-34026), a compromised eslint-config-prettier
@ThreatSynop
26 Jan 2026
38 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
๐จ ACTIVE EXPLOITS ALERT ๐จ Versa Concerto SD-WAN CVE-2025-34026 โ Critical Unauthenticated Access in Versa Concerto SD-WAN! Attackers can bypass login entirely and gain full admin control. CISA just added it to KEV โ exploitation ongoing in the wild. Thread with detai
@CyberAlliance26
26 Jan 2026
75 Impressions
1 Retweet
1 Like
0 Bookmarks
1 Reply
0 Quotes
๐จ CVE-2025-34026 : CRITICAL VULNERABILITY ALERT ๐จ VersaNetworks An unauthenticated Authentication Bypass flaw has been disclosed in Versa Concerto SD-WAN 12.1.2 โ 12.2.0. Public proof-of-concept available. Risk Severity: Critical (CISA KEV, active exploitation) Impact:
@OstorlabSec
24 Jan 2026
122 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-68645 CVE-2025-34026 CVE-2025-31125 CVE-2025-54313 CISA Updates KEV Catalog with Four Actively Exploited Software Vulnerabilities Jan 23, 2026 https://t.co/8V92lYMDDx
@tdatwja
24 Jan 2026
317 Impressions
0 Retweets
3 Likes
0 Bookmarks
1 Reply
0 Quotes
CISA KEV update: 4 vulnerabilities are confirmed exploited in the wild: Versa Concerto (CVE-2025-34026), Zimbra Classic UI (CVE-2025-68645), Vite dev server exposure (CVE-2025-31125), and a eslint-config-prettier supply chain trojan (CVE-2025-54313). What to patch and check:
@Anavem_
23 Jan 2026
786 Impressions
1 Retweet
2 Likes
0 Bookmarks
0 Replies
0 Quotes
โผ๏ธCISA has added 5 vulnerabilities to the KEV Catalog https://t.co/9idGUAHIKd CVE-2024-37079: Broadcom VMware vCenter Server Out-of-bounds Write Vulnerability CVE-2025-68645: Synacor Zimbra Collaboration Suite (ZCS) PHP Remote File Inclusion Vulnerability CVE-2025-34026:
@DarkWebInformer
23 Jan 2026
2470 Impressions
5 Retweets
18 Likes
5 Bookmarks
1 Reply
0 Quotes
๐จ CISA Confirms Active Exploitation of 4 Enterprise Software Flaws (Versa, Zimbra, Vite, Prettier) CISA added four vulnerabilities to its KEV catalog after confirming in-the-wild exploitation, including Versa Concerto auth bypass (CVE-2025-34026), Vite file exposure
@ThreatSynop
23 Jan 2026
58 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
๐จ CISA Flags Actively Exploited Flaws in Vite, Versa Concerto, Zimbra, and Prettier Supply-Chain Package CISA added four vulnerabilities to its KEV catalog, including an actively exploited Versa Concerto auth bypass (CVE-2025-34026) and a malicious-code supply-chain compromise
@ThreatSynop
23 Jan 2026
24 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
๐ ๐๐๐๐ ๐๐๐๐ฌ ๐ ๐๐ซ๐ข๐ญ๐ข๐๐๐ฅ ๐ ๐ฅ๐๐ฐ๐ฌ ๐ญ๐จ "๐๐ฎ๐ฌ๐ญ-๐๐๐ญ๐๐ก" ๐๐ข๐ฌ๐ญ ๐๐ฌ ๐๐ฑ๐ฉ๐ฅ๐จ๐ข๐ญ๐ฌ ๐๐ฎ๐ซ๐ ๐ โข CISA has updated its Known Exploited Vulnerabil
@PurpleOps_io
23 Jan 2026
57 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
๐จ CVE-2025-34026: Versa Concerto Actuator Authenti... Traefik misconfiguration in Versa Concerto exposes Actuator endpoints, enabling unauthenticated heap dumps and trace ex... https://t.co/1zMqjLriTv #netsec #vulnerability #CVE #sysadmin #zeroday
@0dayPublishing
28 Nov 2025
51 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-34026: CRITICAL] Critical vulnerability alert: Versa Concerto SD-WAN platform at risk due to authentication bypass flaw in Traefik reverse proxy. Attackers exploit Actuator endpoint for admin acces...#cve,CVE-2025-34026,#cybersecurity https://t.co/g8mtZedu6U https://t.c
@CveFindCom
21 May 2025
49 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-34026 The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the Traefik reverse proxy configuration, allowing at attacker to access โฆ https://t.co/7Ku9xiAM9g
@CVEnew
21 May 2025
467 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:versa-networks:concerto:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "78511D68-DB7C-4B51-A603-3A6315D8729D",
"versionEndExcluding": "12.1.2",
"versionStartIncluding": "11.4.0"
},
{
"criteria": "cpe:2.3:a:versa-networks:concerto:12.1.2:-:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BC56E615-FC18-48FF-B52E-2251B45A6B43"
},
{
"criteria": "cpe:2.3:a:versa-networks:concerto:12.2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BD1AC8C4-C516-49E7-AE0B-D9B5F209D928"
}
],
"operator": "OR"
}
]
}
]