Lucene search
+L

6 matches found

Information Security Automation
Information Security Automation
added 2024/10/23 8:26 p.m.18 views

On Monday, October 21, updates for the critical Remote Code Execution – VMware vCenter (CVE-2024-38812) vulnerability were released again

On Monday, October 21, updates for the critical Remote Code Execution - VMware vCenter CVE-2024-38812 vulnerabilitywere released again. Wait, haven't fixes for this vulnerability been available since September 17th? They were, but it was not enough. " VMware by Broadcom has determined that the...

9.8CVSS7.9AI score0.54143EPSS
Exploits0
The Hacker News
The Hacker News
added 2024/10/22 7:3 a.m.44 views

VMware Releases vCenter Server Update to Fix Critical RCE Vulnerability

VMware has released software updates to address an already patched security flaw in vCenter Server that could pave the way for remote code execution. The vulnerability, tracked as CVE-2024-38812 CVSS score: 9.8, concerns a case of heap-overflow vulnerability in the implementation of the DCE/RPC...

9.8CVSS9.7AI score0.54143EPSS
Exploits0
The Hacker News
The Hacker News
added 2024/09/18 5:8 a.m.46 views

Patch Issued for Critical VMware vCenter Flaw Allowing Remote Code Execution

Broadcom on Tuesday released updates to address a critical security flaw impacting VMware vCenter Server that could pave the way for remote code execution. The vulnerability, tracked as CVE-2024-38812 CVSS score: 9.8, has been described as a heap-overflow vulnerability in the DCE/RPC protocol. "A...

9.8CVSS8AI score0.54143EPSS
Exploits0
Cvelist
Cvelist
added 2024/09/17 5:13 p.m.49 views

CVE-2024-38812 Heap-overflow vulnerability

The vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger this vulnerability by sending a specially crafted network packet potentially leading to remote code execution...

9.8CVSS0.54143EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/17 5:13 p.m.90 views

CVE-2024-38812 Heap-overflow vulnerability

The vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger this vulnerability by sending a specially crafted network packet potentially leading to remote code execution...

9.8CVSS7.7AI score0.54143EPSS
Exploits0References1
VMware
VMware
added 2024/09/17 12:0 a.m.38 views

VMSA-2024-0019:VMware vCenter Server updates address heap-overflow and privilege escalation vulnerabilities (CVE-2024-38812, CVE-2024-38813)

Advisory ID: | VMSA-2024-0019.3 ---|--- Severity: | Critical CVSSv3 Range: | 7.5-9.8 Synopsis: | VMware vCenter Server updates address heap-overflow and privilege escalation vulnerabilities CVE-2024-38812, CVE-2024-38813 Issue date: | 2024-09-17 Updated on: | 2024-10-21 CVEs | CVE-2024-38812,...

9.8CVSS8.2AI score0.54143EPSS
Exploits0References20Affected Software2
Rows per page
Query Builder