Critical Aviatrix Controller Vulnerability Exploited Against Cloud Environments - SecurityWeek

A critical vulnerability in Aviatrix Controller, CVE-2024-50603, allows unauthenticated attackers to execute arbitrary code in AWS cloud environments. Threat actors are exploiting this vulnerability to deploy malware, including cryptocurrency miners and backdoors. Organizations are advised to update their Aviatrix Controller instances to mitigate the risk.