Description

The Versa Director SD-WAN orchestration platform which makes use of Cisco NCS application service. Active and Standby Directors communicate over TCP ports 4566 and 4570 to exchange High Availability (HA) information using a shared password. Affected versions of Versa Director bound to these ports on all interfaces. An attacker that can access the Versa Director could access the NCS service on port 4566 and exploit it to perform unauthorized administrative actions and perform remote code execution. Customers are recommended to follow the hardening guide.

Versa Networks is not aware of any reported instance where this vulnerability was exploited. Proof of concept for this vulnerability has been disclosed by third party security researchers.

Classification

CVE ID: CVE-2024-45208

CVSS Base Severity: CRITICAL

CVSS Base Score: 9.8

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Products

Vendor: Versa

Product: Director

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.41% (probability of being exploited)

EPSS Percentile: 60.29% (scored less or equal to compared to others)

EPSS Date: 2025-06-23 (when was this score calculated)

References

https://nvd.nist.gov/vuln/detail/CVE-2024-45208
https://security-portal.versa-networks.com/emailbulletins/68526c3cdc94d6b9f2faf718
https://support.versa-networks.com/support/solutions/articles/23000026724-versa-director-ha-port-exploit-discovery-remediation
https://support.versa-networks.com/support/solutions/articles/23000026708-release-22-1-4
https://support.versa-networks.com/support/solutions/articles/23000026033-release-22-1-3
https://support.versa-networks.com/support/solutions/articles/23000025680-release-22-1-2
https://support.versa-networks.com/support/solutions/articles/23000024323-release-21-2-3
https://docs.versa-networks.com/Solutions/System_Hardening/Perform_Manual_Hardening_for_Versa_Director#Harden_Port_4566

Timeline