Описание
The vCenter Server contains an arbitrary file deletion vulnerability in a VMware vSphere Life-cycle Manager plug-in. A malicious actor with network access to port 9087 on vCenter Server may exploit this issue to delete non critical files.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Одно из
EPSS
6.5 Medium
CVSS3
6.4 Medium
CVSS2
Дефекты
Связанные уязвимости
The vCenter Server contains an arbitrary file deletion vulnerability in a VMware vSphere Life-cycle Manager plug-in. A malicious actor with network access to port 9087 on vCenter Server may exploit this issue to delete non critical files.
Уязвимость модуля VMware vSphere Life-cycle Manager средства управления виртуальной инфраструктурой VMware vCenter Server, платформы виртуализации VMware Cloud Foundation, позволяющая нарушителю удалить произвольные файлы
EPSS
6.5 Medium
CVSS3
6.4 Medium
CVSS2