CVE-2026-47870

VMware · Avi Load Balancer

VMware Avi Load Balancer is subject to a privilege escalation vulnerability that allows authenticated users to gain unauthorized access to sensitive functions.

Executive summary

A privilege escalation vulnerability in VMware Avi Load Balancer could permit an authenticated attacker to elevate their privileges and access restricted system features.

Vulnerability

This flaw is classified as CWE-269 (Improper Privilege Management). It is exploitable over the network by an authenticated user with low privileges, allowing for unauthorized escalation of access rights.

Business impact

The vulnerability carries a CVSS score of 7.1, indicating a high risk of unauthorized administrative actions. Successful exploitation could allow a malicious actor to manipulate system configurations or disrupt services, resulting in potential service downtime and the compromise of traffic management policies.

Remediation

Immediate Action: Update the VMware Avi Load Balancer to the latest version as specified in the vendor security advisory.

Proactive Monitoring: Monitor logs for unauthorized administrative activity or unexpected changes to system policies performed by non-administrative accounts.

Compensating Controls: Utilize role-based access control (RBAC) to ensure that users are restricted to the absolute minimum permissions required for their specific job functions.

Exploitation status

Public Exploit Available: No

Analyst recommendation

Given the potential for privilege escalation, organizations should prioritize updating their systems to the patched version. Ensuring that access controls are rigorously maintained will provide additional protection against this and similar privilege-related vulnerabilities.