Lucene search
K

81 matches found

Tenable Nessus
Tenable Nessus
added 2023/09/29 12:0 a.m.17 views

VMware Carbon Black App Control SEoL (8.5.x)

According to its version, VMware Carbon Black App Control is 8.5.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/09/29 12:0 a.m.8 views

VMware Carbon Black App Control SEoL (8.9.x)

According to its version, VMware Carbon Black App Control is 8.9.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/09/29 12:0 a.m.5 views

VMware Carbon Black App Control SEoL (8.6.x)

According to its version, VMware Carbon Black App Control is 8.6.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities...

5.5AI score
Exploits0References1
hivepro
hivepro
added 2023/02/27 12:0 p.m.21 views

Actors, Threats and Vulnerabilities 20 February to 26 February 2023

For a detailed threat digest, download the pdf file here Summary For a detailed threat digest, download the pdf file here HiveForce Labs has identified five active threat actors over the past week. The Earth Kitsune APT and Lazarus Group are North Korean-based cybercrime groups that focus on...

0.9AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/02/24 12:0 a.m.9 views

The vulnerability of the server administration interface for managing VMware Carbon Black App Control allows for the injection of arbitrary code, enabling a hacker to execute arbitrary commands.

The vulnerability of the server administration interface for managing VMware Carbon Black App Control relates to the possibility of executing code. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9.1CVSS7.8AI score0.16873EPSS
Exploits0References4Affected Software1
hivepro
hivepro
added 2023/02/22 10:28 a.m.9 views

Injection vulnerability in VMware Carbon Black App Control

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary There is an injection vulnerability in VMware, specifically in the Carbon Black App Control product. If a malicious actor, who has privileged access to the App Control administration console,...

2.9AI score
Exploits0
The Hacker News
The Hacker News
added 2023/02/22 4:55 a.m.4 views

VMware Patches Critical Vulnerability in Carbon Black App Control Product

VMware on Tuesday released patches to address a critical security vulnerability affecting its Carbon Black App Control product. Tracked as CVE-2023-20858 , the shortcoming carries a CVSS score of 9.1 out of a maximum of 10 and impacts App Control versions 8.7.x, 8.8.x, and 8.9.x. The virtualizati...

9.1CVSS7.5AI score0.21926EPSS
Exploits0
The Hacker News
The Hacker News
added 2023/02/22 4:55 a.m.69 views

VMware Patches Critical Vulnerability in Carbon Black App Control Product

VMware on Tuesday released patches to address a critical security vulnerability affecting its Carbon Black App Control product. Tracked as CVE-2023-20858, the shortcoming carries a CVSS score of 9.1 out of a maximum of 10 and impacts App Control versions 8.7.x, 8.8.x, and 8.9.x. The virtualizatio...

9.1CVSS3.2AI score0.21926EPSS
Exploits0
NVD
NVD
added 2023/02/22 12:15 a.m.18 views

CVE-2023-20858

VMware Carbon Black App Control 8.7.x prior to 8.7.8, 8.8.x prior to 8.8.6, and 8.9.x.prior to 8.9.4 contain an injection vulnerability. A malicious actor with privileged access to the App Control administration console may be able to use specially crafted input allowing access to the underlying...

7.2CVSS7AI score0.16873EPSS
Exploits0References1
Prion
Prion
added 2023/02/22 12:15 a.m.22 views

Design/Logic Flaw

VMware Carbon Black App Control 8.7.x prior to 8.7.8, 8.8.x prior to 8.8.6, and 8.9.x.prior to 8.9.4 contain an injection vulnerability. A malicious actor with privileged access to the App Control administration console may be able to use specially crafted input allowing access to the underlying...

5.8CVSS6.9AI score0.16873EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/02/22 12:0 a.m.7 views

VMware Carbon Black App Control 注入漏洞

VMware Carbon Black App Control is an application control product from VMware, Inc. It is used to lock down servers and critical systems to prevent unwanted changes. A security vulnerability in VMware Carbon Black App Control versions prior to 8.7.8 8.7.x, prior to 8.8.6 8.8.x, and prior to 8.9.4...

7.2CVSS7.4AI score0.16873EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/02/21 12:0 a.m.6 views

CVE-2023-20858

VMware Carbon Black App Control 8.7.x prior to 8.7.8, 8.8.x prior to 8.8.6, and 8.9.x.prior to 8.9.4 contain an injection vulnerability. A malicious actor with privileged access to the App Control administration console may be able to use specially crafted input allowing access to the underlying...

7AI score0.16873EPSS
Exploits0References1
VMware
VMware
added 2023/02/21 12:0 a.m.44 views

VMware Carbon Black App Control updates address an injection vulnerability (CVE-2023-20858)

3. Injection Vulnerability CVE-2023-20858 VMware Carbon Black App Control contains an injection vulnerability. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.1...

5.8CVSS7.6AI score0.16873EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2023/02/21 12:0 a.m.156 views

CVE-2023-20858

CVE-2023-20858 affects VMware Carbon Black App Control management servers in versions 8.7.x before 8.7.8, 8.8.x before 8.8.6, and 8.9.x before 8.9.4. The issue is described as an injection vulnerability where a user with privileged access to the App Control administration console can supply speci...

7.2CVSS7.1AI score0.16873EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/02/21 12:0 a.m.29 views

CVE-2023-20858

VMware Carbon Black App Control 8.7.x prior to 8.7.8, 8.8.x prior to 8.8.6, and 8.9.x.prior to 8.9.4 contain an injection vulnerability. A malicious actor with privileged access to the App Control administration console may be able to use specially crafted input allowing access to the underlying...

7.2AI score0.16873EPSS
Exploits0References1
Microsoft Secure
Microsoft Secure
added 2022/09/20 5:0 p.m.27 views

New Windows 11 security features are designed for hybrid work

Attackers are constantly evolving, becoming increasingly sophisticated and destructive—the median time for an attacker to access your private data if you fall victim to a phishing email is 1 hour, 12 minutes.1 Microsoft tracks more than 35 ransomware families and more than 250 unique nation-state...

0.9AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2022/09/20 5:0 p.m.24 views

New Windows 11 security features are designed for hybrid work

Attackers are constantly evolving, becoming increasingly sophisticated and destructive—the median time for an attacker to access your private data if you fall victim to a phishing email is 1 hour, 12 minutes.1 Microsoft tracks more than 35 ransomware families and more than 250 unique nation-state...

0.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/07/06 12:0 a.m.28 views

VMware Carbon Black App Control 8.5.x < 8.5.14 / 8.6.x < 8.6.6 / 8.7 < 8.7.4 / 8.8 < 8.8.2 Multiple Vulnerabilities (VMSA-2022-0008)

Multiple vulnerabilities exist in the VMware Carbon Black App Control management server, as follows: - VMware Carbon Black App Control 8.5.x prior to 8.5.14, 8.6.x prior to 8.6.6, 8.7.x prior to 8.7.4 and 8.8.x prior to 8.8.2 contains an OS command injection vulnerability. An authenticated, high...

9.1CVSS9.2AI score0.21926EPSS
Exploits0References3
Microsoft KB
Microsoft KB
added 2022/04/21 12:0 a.m.5 views

April 21, 2022—KB5012636 (OS Build 17763.2867) Preview

April 21, 2022—KB5012636 OS Build 17763.2867 Preview 11/17/20 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows 10, version 1809, see its update history page. Highlights Updates...

7.1AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2022/03/25 12:0 a.m.7 views

The vulnerability of the administration interface of the server for managing VMware Carbon Black App Control allows a perpetrator to execute arbitrary code.

The vulnerability of the administration interface for VMware Carbon Black App Control exists due to the lack of measures taken to neutralize special elements used in the operating system’s command set. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.1CVSS8.4AI score0.21926EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder