all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CVE-2021-39144: VMware Cloud Foundation Unauthenticated Remote Code Execution

Add to bookmarks
Oct. 27, 2022, 3:22 p.m. | Caitlin Condon

Rapid7 Blog blog.rapid7.com

On October 25, 2022, VMware published VMSA-2022-0027 on two vulnerabilities in its Cloud Foundation solution. By far the more severe of these is CVE-2021-39144, an unauthenticated remote code execution vulnerability with a CVSSv3 score of 9.8.

cloud code code execution cve emergent threat response foundation remote code execution vmware vmware cloud vmware cloud foundation vulnerability risk management

Visit resource

More from blog.rapid7.com / Rapid7 Blog

Enforce and Report on PCI DSS v4 Compliance with Rapid7 2 days, 2 hours ago | blog.rapid7.com
adoption compliance council data +21
Rapid7 Insight Platform Achieves Level 2 TX-Ramp Authorization 2 days, 22 hours ago | blog.rapid7.com
authorization authorization management cloud cloud security +17
Start with threat modelling and let gamers game 6 days, 19 hours ago | blog.rapid7.com
availability cloud demand game +20
Metasploit Weekly Wrap-Up 04/12/24 6 days, 21 hours ago | blog.rapid7.com
account account takeover active directory authentication +16
CVE-2024-3400: Critical Command Injection Vulnerability in Palo Alto Networks Firewalls 1 week ago | blog.rapid7.com
advisory alto april arbitrary code +25
Stories from the SOC Part 2: MSIX Installer Utilizes Telegram Bot to Execute IDAT Loader 1 week, 2 days ago | blog.rapid7.com
analysis application blog bot +17
Patch Tuesday - April 2024 1 week, 2 days ago | blog.rapid7.com
april critical cwe defender +11
Metasploit Weekly Wrap-Up 04/05/2024 1 week, 6 days ago | blog.rapid7.com
capabilities esc exploiting family +7
What’s New in Rapid7 Products & Services: Q1 2024 in Review 2 weeks, 1 day ago | blog.rapid7.com
focus insightcloudsec insightidr managed detection and response (mdr) +12

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Security Engineer, Incident Response

@ Databricks | Remote - Netherlands
View on infosec-jobs.com

Associate Vulnerability Engineer - Mid-Atlantic region (Part-Time)

@ GuidePoint Security LLC | Remote in VA, MD, PA, NC, DE, NJ, or DC
View on infosec-jobs.com

Data Security Architect

@ Accenture Federal Services | Washington, DC
View on infosec-jobs.com

Identity Security Administrator

@ SailPoint | Pune, India
View on infosec-jobs.com
View more jobs