ГлавнаяУязвимости → CVE-2024-22274
7.2высокая

CVE-2024-22274

→ есть в БДУ: BDU:2024-05108 (на русском)
Описание (на английском; русское — в БДУ выше)

The vCenter Server contains an authenticated remote code execution vulnerability. A malicious actor with administrative privileges on the vCenter appliance shell may exploit this issue to run arbitrary commands on the underlying operating system.

Затрагиваемое ПО
Vmware Cloud foundationVmware Vcenter server
CVSS
Балл7.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Источники
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24308https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24308