Vulnerabilities > Vmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-03 | CVE-2023-20854 | Improper Privilege Management vulnerability in VMWare Workstation 17.0 VMware Workstation contains an arbitrary file deletion vulnerability. | 8.4 |
| 2023-02-01 | CVE-2023-20856 | Cross-Site Request Forgery (CSRF) vulnerability in VMWare Vrealize Operations VMware vRealize Operations (vROps) contains a CSRF bypass vulnerability. | 8.8 |
| 2023-01-26 | CVE-2022-31704 | Unspecified vulnerability in VMWare Vrealize LOG Insight The vRealize Log Insight contains a broken access control vulnerability. | 9.8 |
| 2023-01-26 | CVE-2022-31706 | Path Traversal vulnerability in VMWare Vrealize LOG Insight The vRealize Log Insight contains a Directory Traversal Vulnerability. | 9.8 |
| 2023-01-26 | CVE-2022-31710 | Deserialization of Untrusted Data vulnerability in VMWare Vrealize LOG Insight vRealize Log Insight contains a deserialization vulnerability. | 7.5 |
| 2023-01-26 | CVE-2022-31711 | Unspecified vulnerability in VMWare Vrealize LOG Insight VMware vRealize Log Insight contains an Information Disclosure Vulnerability. | 5.3 |
| 2023-01-14 | CVE-2023-22602 | Interpretation Conflict vulnerability in multiple products When using Apache Shiro before 1.11.0 together with Spring Boot 2.6+, a specially crafted HTTP request may cause an authentication bypass. The authentication bypass occurs when Shiro and Spring Boot are using different pattern-matching techniques. | 7.5 |
| 2022-12-16 | CVE-2022-31707 | Unspecified vulnerability in VMWare Vrealize Operations vRealize Operations (vROps) contains a privilege escalation vulnerability. | 7.2 |
| 2022-12-16 | CVE-2022-31708 | Unspecified vulnerability in VMWare Vrealize Operations vRealize Operations (vROps) contains a broken access control vulnerability. | 4.9 |
| 2022-12-14 | CVE-2022-31700 | Unspecified vulnerability in VMWare Access, Cloud Foundation and Identity Manager VMware Workspace ONE Access and Identity Manager contain an authenticated remote code execution vulnerability. | 7.2 |