CVE-2022-22948
VMware vCenter Server Incorrect Default File Permissions Vulnerability
CVSS
—
Sin CVSS
EPSS
13.9%
p96
KEV
SÍ
17 jul 2024
Exploit Today
79
0-100
Publicado: — · Última mod.: —
Producto
VMware / vCenter Server
Vulnerabilidad
VMware vCenter Server Incorrect Default File Permissions Vulnerability
Añadido a KEV
17 jul 2024
Remediar antes de
7 ago 2024
Uso conocido en ransomware
No
Descripción resumida
VMware vCenter Server contains an incorrect default file permissions vulnerability that allows a remote, privileged attacker to gain access to sensitive information.
Acción requerida
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Notas
https://www.vmware.com/security/advisories/VMSA-2022-0009.html; https://nvd.nist.gov/vuln/detail/CVE-2022-22948