BROADCOM has released updates for the VMware Avi Load Balancer to address seven serious vulnerabilities, including a critical authentication bypass (CVE-2026-47865) and others that allow arbitrary code execution or privilege escalation. Two researchers, Filip Waeytens and Lang Khuong Duy, identified high-severity vulnerabilities, urging organizations to apply the updates promptly to mitigate potential exploitation, although no in-the-wild attacks have been reported. The vulnerabilities require network or local access for exploitation.
Broadcom fixes critical VMware Avi LB flaws, CVE-2026-47865
CyberSIXT Evidence Panel
Article by CyberSIXT
Timeline Coverage
Swipe to explore timeline
-
Broadcom patches Avi Load Balancer auth bypass CVE-2026-47865
cybersixt.com
-
Broadcom fixes critical VMware Avi LB flaws, CVE-2026-47865
www.securityweek.com