VMware vRealize Operations (aka vROps) 6.x before 6.4.0 allows remote authenticated users to gain privileges, or halt and remove virtual machines, via unspecified vectors.
oryginał ENCVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HVMware Vrealize Operations
APPVmware6.0.06.1.06.2.0a6.2.16.3.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje
Powiązane podatności
CVE-2020-3943CRITICAL9.8ten sam produkt
vRealize Operations for Horizon Adapter (6.7.x prior to 6.7.1 and 6.6.x prior to 6.6.1) uses a JMX RMI service...
CVE-2023-20878HIGH7.2ten sam produkt
VMware Aria Operations contains a deserialization vulnerability. A malicious actor with administrative privile...
CVE-2023-20877HIGH8.8ten sam produkt
VMware Aria Operations contains a privilege escalation vulnerability. An authenticated malicious user with Rea...
CVE-2023-20856HIGH8.8ten sam produkt
VMware vRealize Operations (vROps) contains a CSRF bypass vulnerability. A malicious user could execute action...
CVE-2022-31707HIGH7.2ten sam produkt
vRealize Operations (vROps) contains a privilege escalation vulnerability. VMware has evaluated the severity o...