Vulnerabilities > CVE-2023-34056 - Unspecified vulnerability in VMWare Vcenter Server

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

vmware

NVD

Published: 2023-10-25

Updated: 2023-10-31

Summary

vCenter Server contains a partial information disclosure vulnerability. A malicious actor with non-administrative privileges to vCenter Server may leverage this issue to access unauthorized data.

Vulnerable Configurations

Part	Description	Count
Application	Vmware Vmware Vcenter Server 7.0 Vmware Vcenter Server 8.0 Vmware Vcenter Server 4.0 Vmware Vcenter Server 4.0.0.10021 Vmware Vcenter Server 4.0.0.12305 Vmware Vcenter Server 4.1 Vmware Vcenter Server 4.1.0.12319 Vmware Vcenter Server 4.1.0.14766 Vmware Vcenter Server 4.1.0.17435 Vmware Vcenter Server 5.0 Vmware Vcenter Server 5.0.0.16964 Vmware Vcenter Server 5.5	76

References

https://www.vmware.com/security/advisories/VMSA-2023-0023.html