172 matches found
CVE-2022-31703
The CVE-2022-31703 entry concerns a Directory Traversal Vulnerability in VMware products that, per the documents, allows an unauthenticated attacker to inject files into the operating system of VMware vRealize Log Insight (and related vRNI REST API endpoints), potentially leading to remote code e...
CVE-2022-31703
The vRealize Log Insight contains a Directory Traversal Vulnerability. An unauthenticated, malicious actor can inject files into the operating system of an impacted appliance which can result in remote code execution...
PT-2022-5903 · Vmware · Vrealize Log Insight +1
Name of the Vulnerable Software and Affected Versions: vRealize Log Insight affected versions not specified vRealize Network Insight affected versions not specified Description: The issue concerns a Directory Traversal Vulnerability in the vRealize Log Insight and vRealize Network Insight. This...
The export function of the vRealize Log Insight management tool is vulnerable, allowing attackers to compromise the integrity of the protected information.
The vulnerability of the export function of the vRealize Log Insight management tool exists due to the lack of measures taken to neutralize special elements. Exploiting this vulnerability allows a malicious actor to compromise the integrity of the protected information...
The vulnerability of the log management tool vRealize Log Insight, related to the lack of security measures for the website structure, allows attackers to perform cross-site scripting attacks.
The vulnerability of the vRealize Log Insight log management tool is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...
The vulnerability of the log file management tool vRealize Log Insight, related to the lack of security measures for website structures, allows attackers to perform cross-site scripting attacks.
The vulnerability of the log file management tool vRealize Log Insight is related to the lack of security measures for the website structure. Exploiting this vulnerability could allow a malicious actor to perform a cross-site scripting attack remotely...
VMware vRealize Log Insight 8.x < 8.8.2 XSS (VMSA-2022-0019)
The VMware vRealize Log Insight application running on the remote host is 8.0.0 or later but prior to 8.8.2. It is, therefore, affected by multiple XSS vulnerabilities. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. C...
CVE-2022-31654
VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in configurations...
CVE-2022-31655
VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in alerts...
CVE-2022-31654
VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in configurations...
CVE-2022-31655
VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in alerts...
CVE-2022-31654
VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in configurations...
CVE-2022-31655
VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in alerts...
Cross site scripting
VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in configurations...
Cross site scripting
VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in alerts...
CVE-2022-31655
CVE-2022-31655 affects VMware vRealize Log Insight before 8.8.2. The issue is a stored cross-site scripting vulnerability caused by improper input sanitization in alerts, as documented by Red Hat, NVD, and VMware advisories. The vulnerability arises in the alert configuration/input path and can b...
CVE-2022-31655
VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in alerts...
CVE-2022-31654
VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in configurations...
CVE-2022-31654
CVE-2022-31654 affects VMware vRealize Log Insight prior to 8.8.2. The issue is a stored cross-site scripting (XSS) vulnerability caused by improper input sanitization in configurations, enabling malicious input to be stored and potentially executed in the context of an admin-facing interface. Th...
VMware vRealize Log Insight 跨站脚本漏洞
VMware vRealize Log Insight is a centralized log management solution from VMware. The product supports features such as log organization and log analysis. A cross-site scripting vulnerability exists in VMware vRealize Log Insight versions prior to 8.8.2, which stems from improper input escaping i...