Vrealize Log Insight@8.0.0 Security Vulnerabilities and Issues — Vrealize Log Insight@8.0.0 CVE List

Lucene search

VmwareVrealize Log Insight8.0.0

5 matches found

CVE•added 2023/01/26 9:15 p.m.•170 views

CVE-2022-31704

The vRealize Log Insight contains a broken access control vulnerability. An unauthenticated malicious actor can remotely inject code into sensitive files of an impacted appliance which can result in remote code execution.

9.8CVSS9.8AI score0.7997EPSS

CVE•added 2023/01/26 9:15 p.m.•119 views

CVE-2022-31710

vRealize Log Insight contains a deserialization vulnerability. An unauthenticated malicious actor can remotely trigger the deserialization of untrusted data which could result in a denial of service.

7.5CVSS7.6AI score0.00738EPSS

CVE•added 2023/01/26 9:15 p.m.•118 views

CVE-2022-31706

The vRealize Log Insight contains a Directory Traversal Vulnerability. An unauthenticated, malicious actor can inject files into the operating system of an impacted appliance which can result in remote code execution.

9.8CVSS9.7AI score0.82654EPSS

CVE•added 2023/01/26 9:15 p.m.•78 views

CVE-2022-31711

VMware vRealize Log Insight contains an Information Disclosure Vulnerability. A malicious actor can remotely collect sensitive session and application information without authentication.

5.3CVSS6.8AI score0.72034EPSS

CVE•added 2021/08/30 7:15 p.m.•54 views

CVE-2021-22021

VMware vRealize Log Insight (8.x prior to 8.4) contains a Cross Site Scripting (XSS) vulnerability due to improper user input validation. An attacker with user privileges may be able to inject a malicious payload via the Log Insight UI which would be executed when the victim accesses the shared das...

5.4CVSS5.3AI score0.00242EPSS