Lucene search
VmwareCVE-2022-31682HistoryOct 11, 2022 - 9:15 p.m.
CVE-2022-31682
2022-10-1121:15:12
vmware
web.nvd.nist.gov
32
7
vmware
aria operations
cve-2022-31682
arbitrary file read
vulnerability
nvd
CVSS3
4.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
AI Score
5
Confidence
High
EPSS
0.001
Percentile
26.8%
VMware Aria Operations contains an arbitrary file read vulnerability. A malicious actor with administrative privileges may be able to read arbitrary files containing sensitive data.
Affected configurations
Node
vmwarevrealize_operationsRange8.0β8.10
| Vendor | Product | Version | CPE |
|---|---|---|---|
| vmware | vrealize_operations | * | cpe:2.3:a:vmware:vrealize_operations:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "n/a",
"product": "VMware Aria Operations",
"versions": [
{
"version": "VMware Aria Operations 8.x",
"status": "affected"
}
]
}
]Social References
More
Related
vmware
vmware
nvd
nvd
CVE-2022-31682
2022-10-11 21:15:12
prion
prion
Design/Logic Flaw
2022-10-11 21:15:00
cvelist
cvelist
CVE-2022-31682
2022-10-11 00:00:00
nessus
nessus
VMware vRealize Operations 8.x < 8.10 Arbitrary File Read (VMSA-2022-0026)
2023-01-25 00:00:00
CVSS3
4.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
AI Score
5
Confidence
High
EPSS
0.001
Percentile
26.8%
Related for CVE-2022-31682