Lucene search
HistoryJun 18, 2024 - 6:15 a.m.
CVE-2024-37081
vcenter server
privilege escalation
misconfiguration
sudo
authenticated user
non-administrative user
root privileges
appliance
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.0%
The vCenter Server contains multiple local privilege escalation vulnerabilities due to misconfiguration of sudo.Β An authenticated local user with non-administrative privileges may exploit these issues to elevate privileges to root on vCenter Server Appliance.
Related
vulnrichment
vulnrichment
CVE-2024-37081
2024-06-18 05:43:20
githubexploit
githubexploit
Exploit for CVE-2024-37081
2024-07-09 16:14:41
cvelist
cvelist
CVE-2024-37081
2024-06-18 05:43:20
cve
cve
CVE-2024-37081
2024-06-18 06:15:11
nessus
nessus
hackread
hackread
thn
thn
VMware Issues Patches for Cloud Foundation, vCenter Server, and vSphere ESXi
2024-06-18 08:24:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2024-37081