VMware

Cloud Foundation

135 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.3

CVE-2023-34063

  • EPSS 0.17%
  • Veröffentlicht 16.01.2024 10:15:07
  • Zuletzt bearbeitet 21.11.2024 08:06:30

Aria Automation contains a Missing Access Control vulnerability. An authenticated malicious actor may exploit this vulnerability leading to unauthorized access to remote organizations and workflows.

6.7

CVE-2023-34043

  • EPSS 0.04%
  • Veröffentlicht 27.09.2023 15:18:52
  • Zuletzt bearbeitet 21.11.2024 08:06:27

VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with administrative access to the local system can escalate privileges to 'root'.

6.1

CVE-2023-20884

  • EPSS 0.34%
  • Veröffentlicht 30.05.2023 16:15:09
  • Zuletzt bearbeitet 10.01.2025 19:15:31

VMware Workspace ONE Access and VMware Identity Manager contain an insecure redirect vulnerability. An unauthenticated malicious actor may be able to redirect a victim to an attacker controlled domain due to improper path handling leading to sensitiv...

8.8

CVE-2023-20877

  • EPSS 0.55%
  • Veröffentlicht 12.05.2023 21:15:09
  • Zuletzt bearbeitet 27.01.2025 18:15:32

VMware Aria Operations contains a privilege escalation vulnerability. An authenticated malicious user with ReadOnly privileges can perform code execution leading to privilege escalation.

7.2

CVE-2023-20878

  • EPSS 0.65%
  • Veröffentlicht 12.05.2023 21:15:09
  • Zuletzt bearbeitet 27.01.2025 18:15:32

VMware Aria Operations contains a deserialization vulnerability. A malicious actor with administrative privileges can execute arbitrary commands and disrupt the system.

6.7

CVE-2023-20879

  • EPSS 0.06%
  • Veröffentlicht 12.05.2023 21:15:09
  • Zuletzt bearbeitet 27.01.2025 17:15:10

VMware Aria Operations contains a Local privilege escalation vulnerability. A malicious actor with administrative privileges in the Aria Operations application can gain root access to the underlying operating system.

6.7

CVE-2023-20880

  • EPSS 0.05%
  • Veröffentlicht 12.05.2023 21:15:09
  • Zuletzt bearbeitet 27.01.2025 18:15:32

VMware Aria Operations contains a privilege escalation vulnerability. A malicious actor with administrative access to the local system can escalate privileges to 'root'.

9.8

CVE-2023-20864

  • EPSS 92.93%
  • Veröffentlicht 20.04.2023 21:15:08
  • Zuletzt bearbeitet 05.02.2025 16:15:34

VMware Aria Operations for Logs contains a deserialization vulnerability. An unauthenticated, malicious actor with network access to VMware Aria Operations for Logs may be able to execute arbitrary code as root.

7.2

CVE-2023-20865

  • EPSS 0.69%
  • Veröffentlicht 20.04.2023 21:15:08
  • Zuletzt bearbeitet 05.02.2025 16:15:34

VMware Aria Operations for Logs contains a command injection vulnerability. A malicious actor with administrative privileges in VMware Aria Operations for Logs can execute arbitrary commands as root.

7.2

CVE-2022-31700

  • EPSS 2.45%
  • Veröffentlicht 14.12.2022 19:15:12
  • Zuletzt bearbeitet 22.04.2025 16:15:29

VMware Workspace ONE Access and Identity Manager contain an authenticated remote code execution vulnerability. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 7.2.