CVE-2024-38830
- EPSS 0.18%
- Veröffentlicht 26.11.2024 12:15:18
- Zuletzt bearbeitet 14.05.2025 16:43:34
VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with local administrative privileges may trigger this vulnerability to escalate privileges to root user on the appliance running VMware Aria Operations.
CVE-2024-38831
- EPSS 0.29%
- Veröffentlicht 26.11.2024 12:15:18
- Zuletzt bearbeitet 14.05.2025 16:43:22
VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with local administrative privileges can insert malicious commands into the properties file to escalate privileges to a root user on the appliance running...
CVE-2024-38832
- EPSS 0.45%
- Veröffentlicht 26.11.2024 12:15:18
- Zuletzt bearbeitet 14.05.2025 16:36:53
VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with editing access to views may be able to inject malicious script leading to stored cross-site scripting in the product VMware Aria Operations.
CVE-2024-38833
- EPSS 0.41%
- Veröffentlicht 26.11.2024 12:15:18
- Zuletzt bearbeitet 14.05.2025 16:36:49
VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with editing access to email templates might inject malicious script leading to stored cross-site scripting in the product VMware Aria Operations.
CVE-2024-38834
- EPSS 0.32%
- Veröffentlicht 26.11.2024 12:15:18
- Zuletzt bearbeitet 14.05.2025 16:36:45
VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with editing access to cloud provider might be able to inject malicious script leading to stored cross-site scripting in the product VMware Aria Operations...
CVE-2024-38817
- EPSS 0.52%
- Veröffentlicht 09.10.2024 20:15:08
- Zuletzt bearbeitet 15.04.2026 00:35:42
VMware NSX contains a command injection vulnerability. A malicious actor with access to the NSX Edge CLI terminal may be able to craft malicious payloads to execute arbitrary commands on the operating system as root.
CVE-2024-38818
- EPSS 0.26%
- Veröffentlicht 09.10.2024 20:15:08
- Zuletzt bearbeitet 15.04.2026 00:35:42
VMware NSX contains a local privilege escalation vulnerability. An authenticated malicious actor may exploit this vulnerability to obtain permissions from a separate group role than previously assigned.
CVE-2024-38815
- EPSS 0.31%
- Veröffentlicht 09.10.2024 20:15:07
- Zuletzt bearbeitet 15.04.2026 00:35:42
VMware NSX contains a content spoofing vulnerability. An unauthenticated malicious actor may be able to craft a URL and redirect a victim to an attacker controlled domain leading to sensitive information disclosure.
CVE-2024-38813
- EPSS 16.68%
- Veröffentlicht 17.09.2024 18:15:04
- Zuletzt bearbeitet 31.10.2025 15:56:53
The vCenter Server contains a privilege escalation vulnerability. A malicious actor with network access to vCenter Server may trigger this vulnerability to escalate privileges to root by sending a specially crafted network packet.
CVE-2024-38812
- EPSS 54.14%
- Veröffentlicht 17.09.2024 18:15:03
- Zuletzt bearbeitet 31.10.2025 15:57:11
The vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger this vulnerability by sending a specially crafted network packet potentially l...