Vulnerabilities > Vmware > Vrealize Operations > 7.0.0

DATE CVE VULNERABILITY TITLE RISK
2021-10-13 CVE-2021-22033 Server-Side Request Forgery (SSRF) vulnerability in VMWare products
Releases prior to VMware vRealize Operations 8.6 contain a Server Side Request Forgery (SSRF) vulnerability.
network
low complexity
vmware CWE-918
2.7
2.7
2018-12-18 CVE-2018-6978 Incorrect Permission Assignment for Critical Resource vulnerability in VMWare Vrealize Operations
vRealize Operations (7.x before 7.0.0.11287810, 6.7.x before 6.7.0.11286837 and 6.6.x before 6.6.1.11286876) contains a local privilege escalation vulnerability due to improper permissions of support scripts.
local
low complexity
vmware CWE-732
6.7
6.7