Vulnerabilities > CVE-2022-31673 - Unspecified vulnerability in VMWare Vrealize Operations

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

vmware

NVD

Published: 2022-08-10

Updated: 2023-08-08

Summary

VMware vRealize Operations contains an information disclosure vulnerability. A low-privileged malicious actor with network access can create and leak hex dumps, leading to information disclosure. Successful exploitation can lead to a remote code execution.

Vulnerable Configurations

Part	Description	Count
Application	Vmware Vmware Vrealize Operations 8.6.0 Vmware Vrealize Operations 8.6.1 Vmware Vrealize Operations 8.6.2 Vmware Vrealize Operations 8.6.3	12

References

https://www.vmware.com/security/advisories/VMSA-2022-0022.html