5 matches found
VMware vRealize Operations 8.x < 8.6.4 Multiple Vulnerabilities (VMSA-2022-0022)
The version of VMware vRealize Operations vROps running on the remote host is 8.x prior to 8.6.4. It is, therefore, affected by a multiple vulnerabilities: - A malicious actor with administrative network access can escalate privileges to root. CVE-2022-31672 - A low-privileged malicious actor wit...
CVE-2022-31675
VMware vRealize Operations contains an authentication bypass vulnerability. An unauthenticated malicious actor with network access may be able to create a user with administrative privileges...
CVE-2022-31675
VMware vRealize Operations contains an authentication bypass vulnerability. An unauthenticated malicious actor with network access may be able to create a user with administrative privileges...
Vulnerabilities fixed in VMware vRealize Operations
Vulnerabilities have been fixed in VMware vRealize Operations. The vulnerabilities allow a malicious party to carry out attacks execute attacks that result in the following categories of damage: Bypassing authentication. Remote code execution Administrator/Root privileges Access to sensitive data...
CVE-2022-31675
CVE-2022-31675 affects VMware vRealize Operations. The issue is an authentication bypass allowing an unauthenticated attacker with network access to create an administrative user. Public sources (NVD entry) assign CVSSv3.1: 7.5 (High) with network access and no user interaction. Connected documen...