CVE-2022-22953

VMware HCX update addresses an information disclosure vulnerability. A malicious actor with network user access to the VMware HCX appliance may be able to gain access to sensitive information.

CVE-2024-38814

An authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware. Amalicious authenticated user with non-administrator privileges may beable to enter specially crafted SQL queries and perform unauthorizedremote code execution on the HCX manager. Updates are available to r...