VMware

Cloud Foundation

126 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.1

CVE-2024-22255

  • EPSS 4.35%
  • Veröffentlicht 05.03.2024 18:15:48
  • Zuletzt bearbeitet 07.05.2025 15:37:25

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability in the UHCI USB controller. A malicious actor with administrative access to a virtual machine may be able to exploit this issue to leak memory from the vmx process. ...

6.7

CVE-2024-22253

  • EPSS 0.08%
  • Veröffentlicht 05.03.2024 18:15:47
  • Zuletzt bearbeitet 07.05.2025 15:35:46

VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the UHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX pr...

6.7

CVE-2024-22235

  • EPSS 0.05%
  • Veröffentlicht 21.02.2024 05:15:08
  • Zuletzt bearbeitet 20.03.2025 20:15:31

VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with administrative access to the local system can escalate privileges to 'root'.

8.3

CVE-2023-34063

  • EPSS 0.17%
  • Veröffentlicht 16.01.2024 10:15:07
  • Zuletzt bearbeitet 21.11.2024 08:06:30

Aria Automation contains a Missing Access Control vulnerability. An authenticated malicious actor may exploit this vulnerability leading to unauthorized access to remote organizations and workflows.

6.7

CVE-2023-34043

  • EPSS 0.04%
  • Veröffentlicht 27.09.2023 15:18:52
  • Zuletzt bearbeitet 21.11.2024 08:06:27

VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with administrative access to the local system can escalate privileges to 'root'.

6.1

CVE-2023-20884

  • EPSS 0.27%
  • Veröffentlicht 30.05.2023 16:15:09
  • Zuletzt bearbeitet 10.01.2025 19:15:31

VMware Workspace ONE Access and VMware Identity Manager contain an insecure redirect vulnerability. An unauthenticated malicious actor may be able to redirect a victim to an attacker controlled domain due to improper path handling leading to sensitiv...

8.8

CVE-2023-20877

  • EPSS 0.39%
  • Veröffentlicht 12.05.2023 21:15:09
  • Zuletzt bearbeitet 27.01.2025 18:15:32

VMware Aria Operations contains a privilege escalation vulnerability. An authenticated malicious user with ReadOnly privileges can perform code execution leading to privilege escalation.

7.2

CVE-2023-20878

  • EPSS 0.56%
  • Veröffentlicht 12.05.2023 21:15:09
  • Zuletzt bearbeitet 27.01.2025 18:15:32

VMware Aria Operations contains a deserialization vulnerability. A malicious actor with administrative privileges can execute arbitrary commands and disrupt the system.

6.7

CVE-2023-20879

  • EPSS 0.05%
  • Veröffentlicht 12.05.2023 21:15:09
  • Zuletzt bearbeitet 27.01.2025 17:15:10

VMware Aria Operations contains a Local privilege escalation vulnerability. A malicious actor with administrative privileges in the Aria Operations application can gain root access to the underlying operating system.

6.7

CVE-2023-20880

  • EPSS 0.04%
  • Veröffentlicht 12.05.2023 21:15:09
  • Zuletzt bearbeitet 27.01.2025 18:15:32

VMware Aria Operations contains a privilege escalation vulnerability. A malicious actor with administrative access to the local system can escalate privileges to 'root'.