Authorization Bypass in VMware Avi Load Balancer
CVE-2026-47866
8.3HIGH
What is CVE-2026-47866?
VMware Avi Load Balancer is affected by an authorization bypass vulnerability, allowing unauthorized network access to aspects of the Avi Control Plane. This flaw can be exploited by malicious actors to gain access to a limited subset of features without proper authorization. Users of affected versions are strongly encouraged to upgrade to the latest fixed versions to mitigate potential security risks.
Affected Version(s)
Avi Load Balancer 32.1.1
Avi Load Balancer 31.1.1 <= 31.2.2
Avi Load Balancer 30.1.1 <= 30.2.6