all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Multiple Vulnerabilities in VMware Products Could Allow for Arbitrary Code Execution

Add to bookmarks
June 24, 2023, 2:58 a.m. |

Center for Internet Security - Multi-State Information Sharing and Analysis Center www.cisecurity.org

Multiple vulnerabilities have been discovered in VMware vCenter Server and Cloud Foundation, the most severe of which could allow for arbitrary code execution. VMware vCenter Server is the centralized management utility for VMware. VMware Cloud Foundation is a multi-cloud platform that provides a full-stack hyperconverged infrastructure (HCI) that is made for modernizing data centers and deploying modern container-based applications. Successful exploitation of these vulnerabilities could allow for arbitrary code execution in the context of the administrator account. An attacker could …

centralized management cloud cloud platform code code execution foundation hci hyperconverged hyperconverged infrastructure infrastructure management multi-cloud platform products server stack utility vcenter vcenter server vmware vmware cloud vmware cloud foundation vmware vcenter server vulnerabilities

Visit resource

More from www.cisecurity.org / Center for Internet Security - Multi-State Information Sharing and Analysis Center

A Vulnerability in SolarWinds Serv-U Could Allow for Path Transversal 2 days, 7 hours ago | www.cisecurity.org
can disclosure enterprise file +20
Multiple Vulnerabilities in PHP Could Allow for Remote Code Execution 2 days, 9 hours ago | www.cisecurity.org
account applications code code execution +14
Multiple Vulnerabilities in Progress Telerik Report Server Could Allow for Remote Code Execution 5 days, 7 hours ago | www.cisecurity.org
application business business intelligence centralized management +16
A Vulnerability in Check Point Security Gateways Could Allow for Credential Access 1 week, 2 days ago | www.cisecurity.org
access block check check point +16
Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution 1 week, 2 days ago | www.cisecurity.org
arbitrary code arbitrary code execution chrome code +7
Multiple Vulnerabilities in LenelS2 NetBox Could Allow for Arbitrary Code Execution 1 week, 3 days ago | www.cisecurity.org
access access control arbitrary code arbitrary code execution +14
Multiple Vulnerabilities in Fortinet FortiSIEM Could Allow for Remote Code Execution 1 week, 4 days ago | www.cisecurity.org
analysis awareness code code execution +17
A Vulnerability in Google Chrome Could Allow for Arbitrary Code Execution 2 weeks, 2 days ago | www.cisecurity.org
access arbitrary code arbitrary code execution browser +12
A Vulnerability in GitHub Enterprise Server (GHES) Could Allow for Authentication Bypass 2 weeks, 3 days ago | www.cisecurity.org
applications authentication authentication bypass automate +23

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Senior Security Researcher - Linux MacOS EDR (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com

Sr. Manager, NetSec GTM Programs

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

SOC Analyst I

@ Fortress Security Risk Management | Cleveland, OH, United States
View on infosec-jobs.com