Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 8:49 p.m.5 views

CVE-2021-22015

The vCenter Server contains multiple local privilege escalation vulnerabilities due to improper permissions of files and directories. An authenticated local user with non-administrative privilege may exploit these issues to elevate their privileges to root on vCenter Server Appliance...

7.8CVSS7.1AI score0.01808EPSS
Exploits5References1
Rapid7 Blog
Rapid7 Blog
added 2022/10/28 5:45 p.m.41 views

Metasploit Weekly Wrap-UP

GLPI htmLawed PHP Command Injection Our very own bwatters-r7 wrote a module for an unauthenticated PHP command injection vulnerability that exists in various versions of GLPI. The vulnerability is due to a third-party vendor test script being present in default installations. A POST request to...

9.9AI score0.99628EPSS
Exploits13
BDU FSTEC
BDU FSTEC
added 2021/10/13 12:0 a.m.10 views

The vulnerability in the VMI web interface of vCenter Server Appliance, a management tool for VMware vCenter Server virtual infrastructure, allows an attacker to gain unauthorized access to protected information.

The vulnerability in the VCenter Server Management Interface of the VMware vCenter Server web interface relates to deficiencies in path name checking for access to restricted directories. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information by...

7.5CVSS7.6AI score0.01602EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2021/09/23 1:15 p.m.2 views

CVE-2021-22015

The vCenter Server contains multiple local privilege escalation vulnerabilities due to improper permissions of files and directories. An authenticated local user with non-administrative privilege may exploit these issues to elevate their privileges to root on vCenter Server Appliance...

7.8CVSS7.4AI score0.01808EPSS
Exploits5References2
OSV
OSV
added 2017/12/20 3:29 p.m.5 views

CVE-2017-4943

VMware vCenter Server Appliance vCSA 6.5 before 6.5 U1d contains a local privilege escalation vulnerability via the 'showlog' plugin. Successful exploitation of this issue could result in a low privileged user gaining root level privileges over the appliance base OS...

7.8CVSS5.8AI score0.00355EPSS
Exploits0References2
Rows per page
Query Builder