Lucene search
VMwareVMSA-2023-0004HistoryFeb 21, 2023 - 12:00 a.m.
VMware Carbon Black App Control updates address an injection vulnerability (CVE-2023-20858)
2023-02-2100:00:00
www.vmware.com
21
vmware
carbon black
app control
injection
vulnerability
fix
cve-2023-20858
software
0.001 Low
EPSS
Percentile
35.9%
3. Injection Vulnerability (CVE-2023-20858)
VMware Carbon Black App Control contains an injection vulnerability. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.1.
| CPE | Name | Operator | Version |
|---|---|---|---|
| app control | lt | 8.9.4 | |
| app control | lt | 8.8.6 | |
| app control | lt | 8.7.8 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20858
docs.vmware.com/en/VMware-Carbon-Black-App-Control/services/cb-ac-announcements/GUID-35DA49E4-41F3-485B-88E5-AE69B354F2FB.html
docs.vmware.com/en/VMware-Carbon-Black-App-Control/services/cb-ac-announcements/GUID-7464A525-BCF4-4329-9228-B040C9C16D22.html
www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Related
nessus
nessus
cve
cve
CVE-2023-20858
2023-02-22 00:15:11
prion
prion
Design/Logic Flaw
2023-02-22 00:15:00
nvd
nvd
CVE-2023-20858
2023-02-22 00:15:11
cvelist
cvelist
CVE-2023-20858
2023-02-21 00:00:00
thn
thn
VMware Patches Critical Vulnerability in Carbon Black App Control Product
2023-02-22 04:55:00