2 matches found
CVE-2022-22945
CVE-2022-22945 affects VMware NSX Data Center for vSphere (NSX-V) in the NSX Edge appliance. A CLI shell injection exists that allows a user with SSH access to an NSX-Edge appliance to execute arbitrary commands as root on the underlying OS (local privilege escalation). Reported cause: improper i...
CVE-2022-31678
Summary: CVE-2022-31678 is an XXE vulnerability in VMware Cloud Foundation’s NSX-V component used with VCF 3.x, allowing denial of service or unintended information disclosure. The root cause is an XML External Entity flaw in NSX-V parsing, enabling crafted XML to cause adverse effects. Impact: B...