CVE-2022-22982
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability: 3.9 / Impact: 3.6
Source: NVD
Description
The vCenter Server contains a server-side request forgery (SSRF) vulnerability. A malicious actor with network access to 443 on the vCenter Server may exploit this issue by accessing a URL request outside of vCenter Server or accessing an internal service.
Affected (69)
Products: Vmware: Cloud Foundation, Vcenter Server
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| From 3.0 to 3.11 | |
| Version 6.5 |
References (2)
Source: security@vmware.com
Release NotesVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Release NotesVendor Advisory
Timeline
No history available yet.