Vulnerabilities > CVE-2022-31711 - Unspecified vulnerability in VMWare Vrealize LOG Insight
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
LOW Integrity impact
NONE Availability impact
NONE Summary
VMware vRealize Log Insight contains an Information Disclosure Vulnerability. A malicious actor can remotely collect sensitive session and application information without authentication.
Vulnerable Configurations
References
- http://packetstormsecurity.com/files/174606/VMware-vRealize-Log-Insight-Unauthenticated-Remote-Code-Execution.html
- http://packetstormsecurity.com/files/174606/VMware-vRealize-Log-Insight-Unauthenticated-Remote-Code-Execution.html
- https://www.vmware.com/security/advisories/VMSA-2023-0001.html
- https://www.vmware.com/security/advisories/VMSA-2023-0001.html