Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

NVD
NVDadded 2019/09/18 9:15 p.m.15 views

CVE-2019-5534

VMware vCenter Server 6.7.x prior to 6.7 U3, 6.5 prior to 6.5 U3 and 6.0 prior to 6.0 U3j contains an information disclosure vulnerability where Virtual Machines deployed from an OVF could expose login information via the virtual machine's vAppConfig properties. A malicious actor with access to...

7.7CVSS7.2AI score0.0036EPSS
Exploits0References2
CVE
CVEadded 2019/09/18 8:32 p.m.180 views

CVE-2019-5534

Summary (CVE-2019-5534): VMware vCenter Server and related ESXi/Vsphere components are affected by an information-disclosure issue in OVF deployments, where vAppConfig properties can reveal credentials (typically root) used to deploy the OVF. A malicious actor with access to query these vAppConfi...

7.7CVSS7.4AI score0.0036EPSS
Exploits0References2Affected Software1
VMware
VMwareadded 2019/09/16 12:0 a.m.86 views

VMware ESXi and vCenter Server updates address command injection and information disclosure vulnerabilities. (CVE-2017-16544, CVE-2019-5531, CVE-2019-5532, CVE-2019-5534)

3a. VMware ESXi 'busybox' command injection vulnerability- CVE-2017-16544 ESXi contains a command injection vulnerability due to the use of vulnerable version of busybox that does not sanitize filenames which may result into executing any escape sequence in the shell. VMware has evaluated the...

6.5CVSS1AI score0.01212EPSS
Exploits12References24Affected Software2
Rows per page
Query Builder