Vrealize Suite Lifecycle Manager Security Vulnerabilities and Issues — Vrealize Suite Lifecycle Manager CVE List

Lucene search

VmwareVrealize Suite Lifecycle Manager

4 matches found

CVE•added 2022/04/13 6:15 p.m.•165 views

CVE-2022-22959

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a cross site request forgery vulnerability. A malicious actor can trick a user through a cross site request forgery to unintentionally validate a malicious JDBC URI.

4.3CVSS6.5AI score0.00414EPSS

CVE•added 2021/08/30 6:15 p.m.•56 views

CVE-2021-22022

The vRealize Operations Manager API (8.x prior to 8.5) contains an arbitrary file read vulnerability. A malicious actor with administrative access to vRealize Operations Manager API can read any arbitrary file on server leading to information disclosure.

4.9CVSS5.9AI score0.00214EPSS

CVE•added 2021/10/13 4:15 p.m.•48 views

CVE-2021-22033

Releases prior to VMware vRealize Operations 8.6 contain a Server Side Request Forgery (SSRF) vulnerability.

4CVSS4AI score0.00216EPSS

CVE•added 2021/10/13 4:15 p.m.•45 views

CVE-2021-22035

VMware vRealize Log Insight (8.x prior to 8.6) contains a CSV(Comma Separated Value) injection vulnerability in interactive analytics export function. An authenticated malicious actor with non-administrative privileges may be able to embed untrusted data prior to exporting a CSV sheet through Log I...

4.3CVSS4.5AI score0.00444EPSS