VMware

Cloud Foundation

131 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2023-20878

  • EPSS 0.61%
  • Veröffentlicht 12.05.2023 21:15:09
  • Zuletzt bearbeitet 27.01.2025 18:15:32

VMware Aria Operations contains a deserialization vulnerability. A malicious actor with administrative privileges can execute arbitrary commands and disrupt the system.

6.7

CVE-2023-20879

  • EPSS 0.05%
  • Veröffentlicht 12.05.2023 21:15:09
  • Zuletzt bearbeitet 27.01.2025 17:15:10

VMware Aria Operations contains a Local privilege escalation vulnerability. A malicious actor with administrative privileges in the Aria Operations application can gain root access to the underlying operating system.

6.7

CVE-2023-20880

  • EPSS 0.05%
  • Veröffentlicht 12.05.2023 21:15:09
  • Zuletzt bearbeitet 27.01.2025 18:15:32

VMware Aria Operations contains a privilege escalation vulnerability. A malicious actor with administrative access to the local system can escalate privileges to 'root'.

9.8

CVE-2023-20864

  • EPSS 92.93%
  • Veröffentlicht 20.04.2023 21:15:08
  • Zuletzt bearbeitet 05.02.2025 16:15:34

VMware Aria Operations for Logs contains a deserialization vulnerability. An unauthenticated, malicious actor with network access to VMware Aria Operations for Logs may be able to execute arbitrary code as root.

7.2

CVE-2023-20865

  • EPSS 0.54%
  • Veröffentlicht 20.04.2023 21:15:08
  • Zuletzt bearbeitet 05.02.2025 16:15:34

VMware Aria Operations for Logs contains a command injection vulnerability. A malicious actor with administrative privileges in VMware Aria Operations for Logs can execute arbitrary commands as root.

7.2

CVE-2022-31700

  • EPSS 2.22%
  • Veröffentlicht 14.12.2022 19:15:12
  • Zuletzt bearbeitet 22.04.2025 16:15:29

VMware Workspace ONE Access and Identity Manager contain an authenticated remote code execution vulnerability. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 7.2.

5.3

CVE-2022-31701

  • EPSS 0.22%
  • Veröffentlicht 14.12.2022 19:15:12
  • Zuletzt bearbeitet 22.04.2025 16:15:30

VMware Workspace ONE Access and Identity Manager contain a broken authentication vulnerability. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 5.3.

8.8

CVE-2022-31696

  • EPSS 0.46%
  • Veröffentlicht 13.12.2022 16:15:19
  • Zuletzt bearbeitet 22.04.2025 16:15:29

VMware ESXi contains a memory corruption vulnerability that exists in the way it handles a network socket. A malicious actor with local access to ESXi may exploit this issue to corrupt memory leading to an escape of the ESXi sandbox.

5.5

CVE-2022-31697

  • EPSS 0.04%
  • Veröffentlicht 13.12.2022 16:15:19
  • Zuletzt bearbeitet 22.04.2025 16:15:29

The vCenter Server contains an information disclosure vulnerability due to the logging of credentials in plaintext. A malicious actor with access to a workstation that invoked a vCenter Server Appliance ISO operation (Install/Upgrade/Migrate/Restore)...

5.3

CVE-2022-31698

  • EPSS 3.5%
  • Veröffentlicht 13.12.2022 16:15:19
  • Zuletzt bearbeitet 31.10.2025 11:44:38

The vCenter Server contains a denial-of-service vulnerability in the content library service. A malicious actor with network access to port 443 on vCenter Server may exploit this issue to trigger a denial-of-service condition by sending a specially c...