AI Score
Confidence
Low
EPSS
Percentile
81.6%
SSVC
Exploitation
active
Automatable
no
Technical Impact
total
The vCenter Server contains an information disclosure vulnerability due to improper permission of files. A malicious actor with non-administrative access to the vCenter Server may exploit this issue to gain access to sensitive information.
[
{
"cpes": [
"cpe:2.3:a:vmware:cloud_foundation:4.0:*:*:*:*:*:*:*"
],
"vendor": "vmware",
"product": "cloud_foundation",
"versions": [
{
"status": "affected",
"version": "4.0",
"lessThan": "5.0",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:a:vmware:cloud_foundation:3.0:*:*:*:*:*:*:*"
],
"vendor": "vmware",
"product": "cloud_foundation",
"versions": [
{
"status": "affected",
"version": "3.0",
"lessThan": "3.11",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:a:vmware:vcenter_server:7.0:*:*:*:*:*:*:*"
],
"vendor": "vmware",
"product": "vcenter_server",
"versions": [
{
"status": "affected",
"version": "7.0",
"lessThan": "7.0_u3d",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:a:vmware:vcenter_server:6.7:*:*:*:*:*:*:*"
],
"vendor": "vmware",
"product": "vcenter_server",
"versions": [
{
"status": "affected",
"version": "6.7",
"lessThan": "6.7_u3p",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:a:vmware:vcenter_server:6.5:*:*:*:*:*:*:*"
],
"vendor": "vmware",
"product": "vcenter_server",
"versions": [
{
"status": "affected",
"version": "6.5",
"lessThan": "6.5_u3r",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
}
]