EUVD-2022-28076

Malicious code in bioql PyPI...

EUVD-2024-37637

Malicious code in bioql PyPI...

CVE-2022-22953

VMware HCX update addresses an information disclosure vulnerability. A malicious actor with network user access to the VMware HCX appliance may be able to gain access to sensitive information...

CVE-2024-38814

An authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware. A malicious authenticated user with non-administrator privileges may be able to enter specially crafted SQL queries and perform unauthorized remote code execution on the HCX manager. Updates are available...

VMware HCX listExtensions SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of VMware HCX. Authentication is required to exploit this vulnerability. The specific flaw exists within the implementation of the listExtensions method. The issue results from the lack of proper...

CVE-2024-38814

An authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware. A malicious authenticated user with non-administrator privileges may be able to enter specially crafted SQL queries and perform unauthorized remote code execution on the HCX manager. Updates are available...

CVE-2024-38814

An authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware. A malicious authenticated user with non-administrator privileges may be able to enter specially crafted SQL queries and perform unauthorized remote code execution on the HCX manager. Updates are available...

CVE-2024-38814

An authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware. A malicious authenticated user with non-administrator privileges may be able to enter specially crafted SQL queries and perform unauthorized remote code execution on the HCX manager. Updates are available...

CVE-2024-38814

An authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware. A malicious authenticated user with non-administrator privileges may be able to enter specially crafted SQL queries and perform unauthorized remote code execution on the HCX manager. Updates are available...

CVE-2024-38814

The CVE-2024-38814 issue affects VMware HCX. It is an authenticated SQL injection in the listExtensions method that can allow a non-administrator, authenticated user to craft SQL queries and potentially achieve remote code execution on the HCX manager. Documented impact is high (CVE-2024-38814 CV...

VMSA-2024-0021: VMware HCX addresses an authenticated SQL injection vulnerability (CVE-2024-38814)

Advisory ID: | VMSA-2024-0021 ---|--- Severity: | Important CVSSv3 Range: | 8.8 Synopsis: | VMware HCX addresses an authenticated SQL injection vulnerability CVE-2024-38814 Issue Date: | 2024-10-16 Updated On: | 2024-10-16 Initial Advisory CVEs: | CVE-2024-38814 1. Impacted Products VMware HCX 2...

VMware HCX SQL注入漏洞

VMware HCX is an application mobility platform from VMware, Inc. designed to simplify application migration, workload rebalancing, and business continuity across data centers and clouds. VMware HCX suffers from a SQL injection vulnerability that stems from a vulnerability that could allow a...

CVE-2024-44667

Shenzhen Haichangxing Technology Co., Ltd HCX H822 4G LTE Router M7628NNxISPxUIv2v1.0.1557.15.35P0 is vulnerable to Incorrect Access Control. Unauthenticated factory mode reset and command injection leads to information exposure and root shell access...

CVE-2024-44667

CVE-2024-44667 affects Shenzhen Haichangxing HCX H822 4G LTE Router (M7628NNxISPxUIv2_v1.0.1557.15.35_P0). The vulnerability is Incorrect Access Control that allows unauthenticated factory mode reset and command injection, leading to information exposure and potential root shell access. Public so...

CVE-2024-44667

Shenzhen Haichangxing Technology Co., Ltd HCX H822 4G LTE Router M7628NNxISPxUIv2v1.0.1557.15.35P0 is vulnerable to Incorrect Access Control. Unauthenticated factory mode reset and command injection leads to information exposure and root shell access...

PT-2024-7335

VMware HCX and Affected Versions VMware HCX versions prior to 4.8.3 VMware HCX versions prior to 4.9.2 VMware HCX versions prior to 4.10.1 Description An authenticated SQL injection flaw exists in the listExtensions method of VMware HCX. This allows a malicious, authenticated user with...

VMware HCX Information Disclosure Vulnerability

VMware HCX is an application mobility platform from VMware, Inc. Designed to simplify application migration, workload rebalancing and business continuity across data centers and clouds, VMware HCX versions 4.3.1 and 4.3.2 contain an information disclosure vulnerability stemming from the fact that...

CVE-2022-22953

VMware HCX update addresses an information disclosure vulnerability. A malicious actor with network user access to the VMware HCX appliance may be able to gain access to sensitive information...

CVE-2022-22953

VMware HCX update addresses an information disclosure vulnerability. A malicious actor with network user access to the VMware HCX appliance may be able to gain access to sensitive information...

CVE-2022-22953

VMware HCX update addresses an information disclosure vulnerability. A malicious actor with network user access to the VMware HCX appliance may be able to gain access to sensitive information...