3 matches found
VMware DCERPC call request uninitialized memory heap overflow vulnerability
Talos Vulnerability Report TALOS-2023-1801 VMware DCERPC call request uninitialized memory heap overflow vulnerability July 13, 2023 CVE Number CVE-2023-20892 SUMMARY A heap overflow vulnerability exists in the request processing functionality of DCERPC library as used in VMware vCenter Server...
CVE-2023-20892
creationtimestamp| type| source ---|---|--- 2023-06-22 19:47:33+00:00| seen| https://t.me/truesecator/4531...
CVE-2023-20892
VMware vCenter Server is affected by CVE-2023-20892, a DCERPC-based heap overflow in the remote procedure call handling. Talos’ TALOS-2023-1801 report confirms a heap overflow in the DCERPC call processing of vCenter Server 7.0.3.01000 (and related components such as vmcad, vmdird, vmafdd) that c...