Lucene search
K

13053 matches found

CVE
CVE
added 2024/04/02 3:49 p.m.62 views

CVE-2024-22247

CVE-2024-22247 — VMware SD-WAN Edge contains a missing authentication and protection mechanism vulnerability. A malicious actor with physical access during activation could potentially access BIOS configuration and exploit the default boot priority. The issue is documented with a moderate base sc...

4.8CVSS7.2AI score0.00215EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/02 3:49 p.m.26 views

CVE-2024-22247

VMware SD-WAN Edge contains a missing authentication and protection mechanism vulnerability. A malicious actor with physical access to the SD-WAN Edge appliance during activation can potentially exploit this vulnerability to access the BIOS configuration. In addition, the malicious actor may be...

4.8CVSS5.3AI score0.00215EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/02 3:49 p.m.12 views

CVE-2024-22247

VMware SD-WAN Edge contains a missing authentication and protection mechanism vulnerability. A malicious actor with physical access to the SD-WAN Edge appliance during activation can potentially exploit this vulnerability to access the BIOS configuration. In addition, the malicious actor may be...

4.8CVSS6.8AI score0.00215EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/02 3:48 p.m.28 views

CVE-2024-22246

VMware SD-WAN Edge contains an unauthenticated command injection vulnerability potentially leading to remote code execution. A malicious actor with local access to the Edge Router UI during activation may be able to perform a command injection attack that could lead to full control of the router...

7.4CVSS8AI score0.00411EPSS
Exploits0References1
CVE
CVE
added 2024/04/02 3:48 p.m.79 views

CVE-2024-22246

CVE-2024-22246 affects VMware SD-WAN Edge with an unauthenticated command injection that can lead to remote code execution. The issue requires local access to the Edge Router UI during activation and could allow an attacker to gain full control of the router. The CVSSv3 base score is 7.4 (HIGH) w...

7.4CVSS7.8AI score0.00411EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/02 3:48 p.m.11 views

CVE-2024-22246

VMware SD-WAN Edge contains an unauthenticated command injection vulnerability potentially leading to remote code execution. A malicious actor with local access to the Edge Router UI during activation may be able to perform a command injection attack that could lead to full control of the router...

7.4CVSS7.9AI score0.00411EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2024/04/02 11:0 a.m.49 views

China-linked Hackers Deploy New 'UNAPIMON' Malware for Stealthy Operations

A threat activity cluster tracked as Earth Freybug has been observed using a new malware called UNAPIMON to fly under the radar. "Earth Freybug is a cyberthreat group that has been active since at least 2012 that focuses on espionage and financially motivated activities," Trend Micro security...

7.8AI score
Exploits0
Positive Technologies
Positive Technologies
added 2024/04/02 12:0 a.m.6 views

PT-2024-2585 · Vmware · Vmware Sd-Wan Orchestrator

Name of the Vulnerable Software and Affected Versions: VMware SD-WAN Orchestrator affected versions not specified Description: The issue is related to an open redirect vulnerability. A malicious actor may redirect a victim to an attacker-controlled domain due to improper path handling, leading to...

8.5CVSS6.8AI score0.00385EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2024/04/02 12:0 a.m.9 views

PT-2024-2561 · Vmware · Vmware Sd-Wan Edge

Name of the Vulnerable Software and Affected Versions: VMware SD-WAN Edge affected versions not specified Description: The issue is related to an unauthenticated command injection vulnerability in the VMware SD-WAN Edge, potentially leading to remote code execution. A malicious actor with local...

7.4CVSS8.2AI score0.00411EPSS
Exploits0References12
CNNVD
CNNVD
added 2024/04/02 12:0 a.m.7 views

VMware SD-WAN 安全漏洞

VMware SD-WAN is an application from VMware, Inc. decouples network software services from the underlying hardware to create virtualized network overlays. A security vulnerability exists in VMware SD-WAN Edge that stems from the presence of an unauthenticated command injection vulnerability that...

7.4CVSS8.3AI score0.00411EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/04/02 12:0 a.m.5 views

PT-2024-3861 · Vmware · Vmware Sd-Wan Edge

Name of the Vulnerable Software and Affected Versions: VMware SD-WAN Edge affected versions not specified Description: The issue is related to a missing authentication and protection mechanism in the VMware SD-WAN Edge appliance. A malicious actor with physical access to the appliance during...

4.8CVSS6.7AI score0.00215EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2024/04/02 12:0 a.m.19 views

VMware Fusion SEoL (6.0.x)

According to its version, VMware Fusion is 6.0.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities. %NASLMINLEVEL 80900 C...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/04/02 12:0 a.m.14 views

VMware Fusion SEoL (2.0.x)

According to its version, VMware Fusion is 2.0.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities. %NASLMINLEVEL 80900 C...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/04/02 12:0 a.m.8 views

VMware Fusion SEoL (11.0.x)

According to its version, VMware Fusion is 11.0.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities. %NASLMINLEVEL 80900 C...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/04/02 12:0 a.m.12 views

VMware Fusion SEoL (5.0.x)

According to its version, VMware Fusion is 5.0.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities. %NASLMINLEVEL 80900 C...

5.5AI score
Exploits0References1
CNNVD
CNNVD
added 2024/04/02 12:0 a.m.5 views

VMware SD-WAN 安全漏洞

VMware SD-WAN is an application from VMware, Inc. decouples network software services from the underlying hardware to create virtualized network overlays. A security vulnerability exists in VMware SD-WAN Edge, which stems from the presence of a vulnerability that lacks authentication and protecti...

4.8CVSS7.5AI score0.00215EPSS
Exploits0References2
VMware
VMware
added 2024/04/02 12:0 a.m.80 views

VMware SD-WAN Edge and SD-WAN Orchestrator updates address multiple security vulnerabilities.

3a. Unauthenticated Command Injection vulnerability in SD-WAN Edge CVE-2024-22246 VMware SD-WAN Edge contains an unauthenticated command injection vulnerability potentially leading to remote code execution. VMware has evaluated the severity of this issue to be in the Important severity range with...

5.8CVSS9.1AI score0.00411EPSS
Exploits0References11Affected Software2
Tenable Nessus
Tenable Nessus
added 2024/04/02 12:0 a.m.13 views

VMware Fusion SEoL (8.0.x)

According to its version, VMware Fusion is 8.0.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities. %NASLMINLEVEL 80900 C...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/04/02 12:0 a.m.14 views

VMware Fusion SEoL (12.0.x)

According to its version, VMware Fusion is 12.0.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities. %NASLMINLEVEL 80900 C...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/04/02 12:0 a.m.16 views

VMware Fusion SEoL (10.0.x)

According to its version, VMware Fusion is 10.0.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities. %NASLMINLEVEL 80900 C...

5.5AI score
Exploits0References1
Rows per page
Query Builder