32 matches found
CBL Mariner 2.0 Security Update: openslp (CVE-2019-5544)
The version of openslp installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2019-5544 advisory. - OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the...
VMSA-2024-0004:VMware Aria Operations updates address local privilege escalation vulnerability (CVE-2024-22235)
Advisory ID: | VMSA-2024-0004 ---|--- Advisory Severity: | Moderate CVSSv3 Range: | 6.7 Synopsis: | VMware Aria Operations updates address local privilege escalation vulnerability. CVE-2024-22235 Issue date: | 2024-02-20 Updated on: | 2024-02-20 Initial Advisory CVEs | CVE-2024-22235 1. Impacted...
VMware Workspace ONE UEM console updates address an open redirect vulnerability (CVE-2023-20886)
3. Advisory Details VMware Workspace ONE UEM console contains an open redirect vulnerability. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 8.8...
Patch Tuesday - March 2023
Microsoft is offering fixes for 101 security issues for March 2023 Patch Tuesday, including two zero-day vulnerabilities; the most interesting of the two zero-day vulnerabilities is a flaw in Outlook which allows an attacker to authenticate against arbitrary remote resources as another user...
VMSA-2023-0003:VMware Workstation update addresses an arbitrary file deletion vulnerability
Advisory ID: VMSA-2023-0003 CVSSv3 Range: 7.8 Issue Date:2023-02-02 Updated On: 2023-02-02 Initial Advisory CVEs: CVE-2023-20854 Synopsis: VMware Workstation update addresses an arbitrary file deletion vulnerability CVE-2023-20854 RSS Feed Download PDF Download Text File Share this page on social...
CVE-2022-31707
vRealize Operations vROps contains a privilege escalation vulnerability. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 7.2...
CVE-2022-31708
vRealize Operations vROps contains a broken access control vulnerability. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 4.4...
Improper access control
vRealize Operations vROps contains a broken access control vulnerability. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 4.4...
CVE-2022-31707
vRealize Operations vROps contains a privilege escalation vulnerability. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 7.2...
CVE-2022-31707
CVE-2022-31707 affects VMware vRealize Operations (vROps). A privilege-escalation vulnerability exists in vROps that can allow an authenticated admin to gain root access to the underlying OS. Reported CVSSv3 base score 7.2 (HIGH); attack vector: network, required privileges: high, no user interac...
CVE-2022-31708
vRealize Operations vROps contains a broken access control vulnerability. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 4.4...
CVE-2022-31701
VMware Workspace ONE Access and Identity Manager contain a broken authentication vulnerability. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 5.3...
Authentication flaw
VMware Workspace ONE Access and Identity Manager contain a broken authentication vulnerability. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 5.3...
CVE-2022-31701
VMware Workspace ONE Access and Identity Manager contain a broken authentication vulnerability. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 5.3...
CVE-2022-31700
VMware Workspace ONE Access and Identity Manager contain an authenticated remote code execution vulnerability. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 7.2...
VMware ESXi addresses Return-Stack-Buffer-Underflow and Branch Type Confusion vulnerabilities
3. Return-Stack-Buffer-Underflow CVE-2022-29901, CVE-2022-28693, CVE-2022-26373 and Branch Type Confusion CVE-2022-23816, CVE-2022-23825 vulnerabilities VMware ESXi contains Return-Stack-Buffer-Underflow CVE-2022-29901, CVE-2022-28693, CVE-2022-26373 and Branch Type Confusion CVE-2022-23816,...
VMSA-2022-0020:VMware ESXi addresses Return-Stack-Buffer-UnderfLOW and Branch Type Confusion vulnerabilities
Advisory ID: VMSA-2022-0020.2 CVSSv3 Range: 5.6 Issue Date:2022-07-12 Updated On: 2022-10-25 CVEs: CVE-2022-29901, CVE-2022-28693, CVE-2022-23816, CVE-2022-23825, CVE-2022-26373 Synopsis: VMware ESXi addresses Return-Stack-Buffer-Underflow and Branch Type Confusion vulnerabilities RSS Feed Downlo...
VMware Horizon Agent for Linux update addresses multiple vulnerabilities (CVE-2022-22962, CVE-2022-22964)
3a. User-controlled folder path customization privilege escalation vulnerability CVE-2022-22962 VMware Horizon Agent for Linux contains a local privilege escalation vulnerability. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base scor...
VMSA-2022-0005:VMware NSX Data Center for vSphere update addresses CLI shell injection vulnerability
Advisory ID: VMSA-2022-0005.2 CVSSv3 Range: 8.8 Issue Date:2022-02-15 Updated On: 2022-04-07 CVEs: CVE-2022-22945 Synopsis: VMware NSX Data Center for vSphere update addresses CLI shell injection vulnerability CVE-2022-22945 RSS Feed Download PDF Download Text File Share this page on social media...
VMware vRealize Orchestrator update addresses open redirect vulnerability (CVE-2021-22036)
3. VMware vRealize Orchestrator update addresses open redirect vulnerability CVE-2021-22036 VMware vRealize Orchestrator contains an open redirect vulnerability due to improper path handling. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv...