exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 3

CVE-2024-38814

больше 1 года назад

An authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware. A malicious authenticated user with non-administrator privileges may be able to enter specially crafted SQL queries and perform unauthorized remote code execution on the HCX manager. Updates are available to remediate this vulnerability in affected VMware products.

CVSS3: 8.8

EPSS: Средний

GHSA-ffhg-6h3q-652p

больше 1 года назад

An authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware. A malicious authenticated user with non-administrator privileges may be able to enter specially crafted SQL queries and perform unauthorized remote code execution on the HCX manager. Updates are available to remediate this vulnerability in affected VMware products.

CVSS3: 8.8

EPSS: Средний

BDU:2024-08691

больше 1 года назад

Уязвимость реализации метода listExtensions программного средства миграции виртуальных машин VMware Hybrid Cloud Extension (HCX), позволяющая нарушителю выполнить произвольный код

CVSS3: 8.8

EPSS: Средний

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-38814 An authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware. A malicious authenticated user with non-administrator privileges may be able to enter specially crafted SQL queries and perform unauthorized remote code execution on the HCX manager. Updates are available to remediate this vulnerability in affected VMware products.	CVSS3: 8.8	26% Средний	больше 1 года назад
GHSA-ffhg-6h3q-652p An authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware. A malicious authenticated user with non-administrator privileges may be able to enter specially crafted SQL queries and perform unauthorized remote code execution on the HCX manager. Updates are available to remediate this vulnerability in affected VMware products.	CVSS3: 8.8	26% Средний	больше 1 года назад
BDU:2024-08691 Уязвимость реализации метода listExtensions программного средства миграции виртуальных машин VMware Hybrid Cloud Extension (HCX), позволяющая нарушителю выполнить произвольный код	CVSS3: 8.8	26% Средний	больше 1 года назад

Уязвимостей на страницу