4 matches found
VMware Issues Patches for Critical Flaws Affecting Carbon Black App Control
VMware on Wednesday released software updates to plug two critical security vulnerabilities affecting its Carbon Black App Control platform that could be abused by a malicious actor to execute arbitrary code on affected installations in Windows systems. Tracked as CVE-2022-22951 and CVE-2022-2295...
CVE-2022-22952
creationtimestamp| type| source ---|---|--- 2022-03-23 23:29:01+00:00| seen| https://t.me/cibsecurity/39445 2022-03-24 04:43:48+00:00| seen| https://t.me/thehackernews/2006 2022-03-24 13:28:00+00:00| seen| https://t.me/truesecator/2768 2022-03-25 12:32:59+00:00| seen|...
CVE-2022-22952
CVE-2022-22952 affects VMware Carbon Black App Control. Affected only when an attacker has administrative access to the App Control administration interface: uploading a specially crafted file can lead to code execution on the Windows AppC Server. Affected versions are 8.5.x before 8.5.14, 8.6.x ...
VMware Carbon Black App Control update addresses multiple vulnerabilities (CVE-2022-22951, CVE-2022-22952)
3a. OS command injection vulnerability in VMware Carbon Black App Control CVE-2022-22951 VMware Carbon Black App Control contains an OS command injection vulnerability. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.1. 3b...