Cloud Foundation@4.2 Security Vulnerabilities and Issues — Cloud Foundation@4.2 CVE List

Lucene search

VmwareCloud Foundation4.2

5 matches found

CVE•added 2022/05/20 9:15 p.m.•277 views

CVE-2022-22972

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an authentication bypass vulnerability affecting local domain users. A malicious actor with network access to the UI may be able to obtain administrative access without the need to authenticate.

9.8CVSS9.1AI score0.93742EPSS

In wild

CVE•added 2022/05/20 9:15 p.m.•243 views

CVE-2022-22973

VMware Workspace ONE Access and Identity Manager contain a privilege escalation vulnerability. A malicious actor with local access can escalate privileges to 'root'.

7.8CVSS8.6AI score0.0339EPSS

In wild

CVE•added 2022/12/13 4:15 p.m.•141 views

CVE-2022-31699

VMware ESXi contains a heap-overflow vulnerability. A malicious local actor with restricted privileges within a sandbox process may exploit this issue to achieve a partial information disclosure.

3.3CVSS5.3AI score0.00327EPSS

CVE•added 2022/12/13 4:15 p.m.•134 views

CVE-2022-31698

The vCenter Server contains a denial-of-service vulnerability in the content library service. A malicious actor with network access to port 443 on vCenter Server may exploit this issue to trigger a denial-of-service condition by sending a specially crafted header.

5.3CVSS5.8AI score0.05013EPSS

CVE•added 2022/10/07 9:15 p.m.•72 views

CVE-2022-31681

VMware ESXi contains a null-pointer deference vulnerability. A malicious actor with privileges within the VMX process only, may create a denial of service condition on the host.

6.5CVSS6.8AI score0.00115EPSS