Cloud Foundation Security Vulnerabilities and Issues — Cloud Foundation CVE List

Lucene search

VmwareCloud Foundation

5 matches found

CVE•added 2023/05/30 4:15 p.m.•86 views

CVE-2023-20884

VMware Workspace ONE Access and VMware Identity Manager contain an insecure redirect vulnerability. An unauthenticated malicious actor may be able to redirect a victim to an attacker controlled domain due to improper path handling leading to sensitive information disclosure.

6.1CVSS5.9AI score0.0027EPSS

CVE•added 2023/05/12 9:15 p.m.•78 views

CVE-2023-20877

VMware Aria Operations contains a privilege escalation vulnerability. An authenticated malicious user with ReadOnly privileges can perform code execution leading to privilege escalation.

8.8CVSS8.9AI score0.00392EPSS

CVE•added 2023/05/12 9:15 p.m.•56 views

CVE-2023-20880

VMware Aria Operations contains a privilege escalation vulnerability. A malicious actor with administrative access to the local system can escalate privileges to 'root'.

6.7CVSS7.3AI score0.00041EPSS

CVE•added 2023/05/12 9:15 p.m.•54 views

CVE-2023-20879

VMware Aria Operations contains a Local privilege escalation vulnerability. A malicious actor with administrative privileges in the Aria Operations application can gain root access to the underlying operating system.

6.7CVSS7.3AI score0.00045EPSS

CVE•added 2023/05/12 9:15 p.m.•53 views

CVE-2023-20878

VMware Aria Operations contains a deserialization vulnerability. A malicious actor with administrative privileges can execute arbitrary commands and disrupt the system.

7.2CVSS7.8AI score0.00557EPSS