VMware

Cloud Foundation

138 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.95%
  • Veröffentlicht 13.07.2022 19:15:09
  • Zuletzt bearbeitet 21.11.2024 06:47:44

The vCenter Server contains a server-side request forgery (SSRF) vulnerability. A malicious actor with network access to 443 on the vCenter Server may exploit this issue by accessing a URL request outside of vCenter Server or accessing an internal se...

Warnung
  • EPSS 52.81%
  • Veröffentlicht 20.05.2022 21:15:09
  • Zuletzt bearbeitet 21.11.2024 06:47:43

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an authentication bypass vulnerability affecting local domain users. A malicious actor with network access to the UI may be able to obtain administrative access without the...

Warnung
  • EPSS 2.29%
  • Veröffentlicht 20.05.2022 21:15:09
  • Zuletzt bearbeitet 21.11.2024 06:47:43

VMware Workspace ONE Access and Identity Manager contain a privilege escalation vulnerability. A malicious actor with local access can escalate privileges to 'root'.

  • EPSS 23.08%
  • Veröffentlicht 13.04.2022 18:15:13
  • Zuletzt bearbeitet 21.11.2024 06:47:41

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain two remote code execution vulnerabilities (CVE-2022-22957 & CVE-2022-22958). A malicious actor with administrative access can trigger deserialization of untrusted data thro...

  • EPSS 2.95%
  • Veröffentlicht 13.04.2022 18:15:13
  • Zuletzt bearbeitet 21.11.2024 06:47:41

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain two remote code execution vulnerabilities (CVE-2022-22957 & CVE-2022-22958). A malicious actor with administrative access can trigger deserialization of untrusted data thro...

  • EPSS 0.5%
  • Veröffentlicht 13.04.2022 18:15:13
  • Zuletzt bearbeitet 21.11.2024 06:47:41

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a cross site request forgery vulnerability. A malicious actor can trick a user through a cross site request forgery to unintentionally validate a malicious JDBC URI.

Warnung Exploit
  • EPSS 37.17%
  • Veröffentlicht 13.04.2022 18:15:13
  • Zuletzt bearbeitet 30.10.2025 20:03:55

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a privilege escalation vulnerability due to improper permissions in support scripts. A malicious actor with local access can escalate privileges to 'root'.

  • EPSS 0.81%
  • Veröffentlicht 13.04.2022 18:15:13
  • Zuletzt bearbeitet 21.11.2024 06:47:41

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an information disclosure vulnerability due to returning excess information. A malicious actor with remote access may leak the hostname of the target system. Successful exp...

Warnung Exploit
  • EPSS 100%
  • Veröffentlicht 11.04.2022 20:15:19
  • Zuletzt bearbeitet 30.10.2025 20:04:37

VMware Workspace ONE Access and Identity Manager contain a remote code execution vulnerability due to server-side template injection. A malicious actor with network access can trigger a server-side template injection that may result in remote code ex...

Warnung
  • EPSS 13.94%
  • Veröffentlicht 29.03.2022 18:15:08
  • Zuletzt bearbeitet 31.10.2025 15:56:49

The vCenter Server contains an information disclosure vulnerability due to improper permission of files. A malicious actor with non-administrative access to the vCenter Server may exploit this issue to gain access to sensitive information.