Vmware Cloud Foundation vulnerabilities

CVE-2024-22274 [HIGH] CWE-94 CVE-2024-22274: The vCenter Server contains an authenticated remote code execution vulnerability. A malicious actor The vCenter Server contains an authenticated remote code execution vulnerability. A malicious actor with administrative privileges on the vCenter appliance shell may exploit this issue to run arbitrary commands on the underlying operating system.

CVE-2024-22275 [MEDIUM] CWE-200 CVE-2024-22275: The vCenter Server contains a partial file read vulnerability. A malicious actor with administrative The vCenter Server contains a partial file read vulnerability. A malicious actor with administrative privileges on the vCenter appliance shell may exploit this issue to partially read arbitrary files containing sensitive data.

CVE-2024-22255 [HIGH] CWE-770 CVE-2024-22255: VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability in the UHCI USB VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability in the UHCI USB controller. A malicious actor with administrative access to a virtual machine may be able to exploit this issue to leak memory from the vmx process.

CVE-2024-22254 [HIGH] CWE-787 CVE-2024-22254: VMware ESXi contains an out-of-bounds write vulnerability. A malicious actor with privileges within VMware ESXi contains an out-of-bounds write vulnerability. A malicious actor with privileges within the VMX process may trigger an out-of-bounds write leading to an escape of the sandbox.

CVE-2024-22253 [MEDIUM] CWE-416 CVE-2024-22253: VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the UHCI USB controll VMware ESXi, Workstation, and Fusion contain a use-after-free vulnerability in the UHCI USB controller. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host. On ESXi, the exploitation is contained within the VMX sandbox whereas, on

CVE-2024-22235 [MEDIUM] CWE-269 CVE-2024-22235: VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with a VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with administrative access to the local system can escalate privileges to 'root'.

CVE-2023-34063 [HIGH] CWE-862 CVE-2023-34063: Aria Automation contains a Missing Access Control vulnerability. An authenticated malicious actor Aria Automation contains a Missing Access Control vulnerability. An authenticated malicious actor may exploit this vulnerability leading to unauthorized access to remote organizations and workflows.

CVE-2023-34043 [MEDIUM] CWE-269 CVE-2023-34043: VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with a VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with administrative access to the local system can escalate privileges to 'root'.

CVE-2023-20878 [HIGH] CWE-502 CVE-2023-20878: VMware Aria Operations contains a deserialization vulnerability. A malicious actor with administrati VMware Aria Operations contains a deserialization vulnerability. A malicious actor with administrative privileges can execute arbitrary commands and disrupt the system.

CVE-2023-20877 [HIGH] CWE-863 CVE-2023-20877: VMware Aria Operations contains a privilege escalation vulnerability. An authenticated malicious use VMware Aria Operations contains a privilege escalation vulnerability. An authenticated malicious user with ReadOnly privileges can perform code execution leading to privilege escalation.

CVE-2023-20880 [MEDIUM] CWE-863 CVE-2023-20880: VMware Aria Operations contains a privilege escalation vulnerability. A malicious actor with adminis VMware Aria Operations contains a privilege escalation vulnerability. A malicious actor with administrative access to the local system can escalate privileges to 'root'.

CVE-2023-20879 [MEDIUM] CVE-2023-20879: VMware Aria Operations contains a Local privilege escalation vulnerability. A malicious actor with a VMware Aria Operations contains a Local privilege escalation vulnerability. A malicious actor with administrative privileges in the Aria Operations application can gain root access to the underlying operating system.

CVE-2023-20864 [CRITICAL] CWE-502 CVE-2023-20864: VMware Aria Operations for Logs contains a deserialization vulnerability. An unauthenticated, malici VMware Aria Operations for Logs contains a deserialization vulnerability. An unauthenticated, malicious actor with network access to VMware Aria Operations for Logs may be able to execute arbitrary code as root.

CVE-2023-20865 [HIGH] CWE-77 CVE-2023-20865: VMware Aria Operations for Logs contains a command injection vulnerability. A malicious actor with a VMware Aria Operations for Logs contains a command injection vulnerability. A malicious actor with administrative privileges in VMware Aria Operations for Logs can execute arbitrary commands as root.

CVE-2022-31696 [HIGH] CWE-787 CVE-2022-31696: VMware ESXi contains a memory corruption vulnerability that exists in the way it handles a network s VMware ESXi contains a memory corruption vulnerability that exists in the way it handles a network socket. A malicious actor with local access to ESXi may exploit this issue to corrupt memory leading to an escape of the ESXi sandbox.

CVE-2022-31697 [MEDIUM] CWE-312 CVE-2022-31697: The vCenter Server contains an information disclosure vulnerability due to the logging of credential The vCenter Server contains an information disclosure vulnerability due to the logging of credentials in plaintext. A malicious actor with access to a workstation that invoked a vCenter Server Appliance ISO operation (Install/Upgrade/Migrate/Restore) can access plaintext passwords used during that operation.

CVE-2022-31698 [MEDIUM] CWE-400 CVE-2022-31698: The vCenter Server contains a denial-of-service vulnerability in the content library service. A mali The vCenter Server contains a denial-of-service vulnerability in the content library service. A malicious actor with network access to port 443 on vCenter Server may exploit this issue to trigger a denial-of-service condition by sending a specially crafted header.

CVE-2022-31699 [LOW] CWE-787 CVE-2022-31699: VMware ESXi contains a heap-overflow vulnerability. A malicious local actor with restricted privileg VMware ESXi contains a heap-overflow vulnerability. A malicious local actor with restricted privileges within a sandbox process may exploit this issue to achieve a partial information disclosure.

CVE-2022-31678 [CRITICAL] CWE-611 CVE-2022-31678: VMware Cloud Foundation (NSX-V) contains an XML External Entity (XXE) vulnerability. On VCF 3.x inst VMware Cloud Foundation (NSX-V) contains an XML External Entity (XXE) vulnerability. On VCF 3.x instances with NSX-V deployed, this may allow a user to exploit this issue leading to a denial-of-service condition or unintended information disclosure.

CVE-2022-31681 [MEDIUM] CWE-476 CVE-2022-31681: VMware ESXi contains a null-pointer deference vulnerability. A malicious actor with privileges withi VMware ESXi contains a null-pointer deference vulnerability. A malicious actor with privileges within the VMX process only, may create a denial of service condition on the host.