CRITICAL🇵🇱 Wersja polska

CVE-2024-42450

CVSS 10.0v3.1pub. 2024-11-19upd. 2026-04-15

The Versa Director uses PostgreSQL (Postgres) to store operational and configuration data. It is also needed for High Availability function of the Versa Director. The default configuration has a common password across all instances of Versa Director. By default, Versa Director configures Postgres to listen on all network interfaces. This combination allows an unauthenticated attacker to access and administer the database or read local filesystem contents to escalate privileges on the system. Exploitation Status: Versa Networks is not aware of this exploitation in any production systems. A proof of concept exists in the lab environment. Workarounds or Mitigation: Starting with the latest 22.1.4 version of Versa Director, the software will automatically restrict access to the Postgres and HA ports to only the local and peer Versa Directors. For older releases, Versa recommends performing manual hardening of HA ports. Please refer to the following link for the steps https://docs.versa-networks.com/Solutions/System_Hardening/Perform_Manual_Hardening_for_Versa_Director#Secure_HA_Ports This vulnerability is not exploitable on Versa Directors if published Firewall guidelines are implemented. We have validated that no Versa-hosted head ends have been affected by this vulnerability. All Versa-hosted head ends are patched and hardened. Please contact Versa Technical Support or Versa account team for any further assistance. Software Download Links: 22.1.4: https://support.versa-networks.com/support/solutions/articles/23000026708-release-22-1-4

🤖 AI Analysis
How it works

The vulnerability results from the use of a hard-coded, shared password (CWE-798 — Use of Hard-coded Credentials) for the PostgreSQL instance across all Versa Director deployments. The default configuration causes PostgreSQL to listen on all network interfaces rather than only on the local or dedicated management interface. An attacker without any credentials can connect directly to the database over the network using known default login credentials. After gaining access, they can read the contents of the local file system and administer the database, leading to privilege escalation at the operating system level.

Impact

An unauthenticated remote attacker can gain full control over the Versa Director database, read sensitive configuration and operational data, and then escalate privileges to system level — potentially resulting in complete device takeover.

Mitigation & patch

Update Versa Director to version 22.1.4 or later, which automatically restricts access to PostgreSQL and HA ports to the local host and trusted peer instances only. For older versions, Versa Networks recommends manual hardening of HA ports according to the documentation: https://docs.versa-networks.com/Solutions/System_Hardening/Perform_Manual_Hardening_for_Versa_Director#Secure_HA_Ports. The vulnerability is not exploitable if the firewall configuration guidelines published by the manufacturer have been implemented.

Who is affected

Versa Director in all versions prior to 22.1.4 with default PostgreSQL configuration (listening on all network interfaces) and without implemented hardening recommendations for firewall published by Versa Networks.

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth BypassLPEFirewall
CWE
References