6 matches found
Cisco Warns of Critical Flaw Affecting On-Prem Smart Software Manager
Cisco has released patches to address a maximum-severity security flaw impacting Smart Software Manager On-Prem Cisco SSM On-Prem that could enable a remote, unauthenticated attacker to change the password of any users, including those belonging to administrative users. The vulnerability, tracked...
UNC3886 Uses Fortinet, VMware 0-Days and Stealth Tactics in Long-Term Spying
The China-nexus cyber espionage actor linked to the zero-day exploitation of security flaws in Fortinet, Ivanti, and VMware devices has been observed utilizing multiple persistence mechanisms in order to maintain unfettered access to compromised environments. "Persistence mechanisms encompassed...
CVE-2022-22948
CVE-2022-22948 affects VMware vCenter Server and is caused by improper default/file permissions that allow non-administrative access to disclose sensitive information. Public sources document VMSA-2022-0009, listing affected versions: vCenter 6.5 up to 6.5U3r, 6.7 up to 6.7U3p, and 7.0 up to 7.0U...
CVE-2022-22948
creationtimestamp| type| source ---|---|--- 2022-03-29 16:53:05+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/1738 2022-03-29 22:11:27+00:00| seen| https://t.me/cibsecurity/39771 2022-03-30 04:44:10+00:00| published-proof-of-concept| https://t.me/cKure/9210 2022-04-04...
VMware vCenter Server updates address an information disclosure vulnerability (CVE-2022-22948)
3. vCenter Server information disclosure vulnerability CVE-2022-22948 The vCenter Server contains an information disclosure vulnerability due to improper permission of files. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of...
Exploit for Incorrect Default Permissions in Vmware Cloud_Foundation
CVE-2022-22948 Information Disclosure in VMWare vCenter -...