CVE-2022-31704

The vRealize Log Insight contains a broken access control vulnerability. An unauthenticated malicious actor can remotely inject code into sensitive files of an impacted appliance which can result in remote code execution.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
http://packetstormsecurity.com/files/174606/VMware-vRealize-Log-Insight-Unauthenticated-Remote-Code-Execution.html
https://www.vmware.com/security/advisories/VMSA-2023-0001.html	Patch Vendor Advisory
http://packetstormsecurity.com/files/174606/VMware-vRealize-Log-Insight-Unauthenticated-Remote-Code-Execution.html
https://www.vmware.com/security/advisories/VMSA-2023-0001.html	Patch Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:vmware:vrealize_log_insight::::::::
	cpe:2.3:a:vmware:vrealize_log_insight::::::::

History

21 Nov 2024, 07:05

Type	Values Removed	Values Added
References	~~() http://packetstormsecurity.com/files/174606/VMware-vRealize-Log-Insight-Unauthenticated-Remote-Code-Execution.html -~~	() http://packetstormsecurity.com/files/174606/VMware-vRealize-Log-Insight-Unauthenticated-Remote-Code-Execution.html -
References	~~() https://www.vmware.com/security/advisories/VMSA-2023-0001.html - Patch, Vendor Advisory~~	() https://www.vmware.com/security/advisories/VMSA-2023-0001.html - Patch, Vendor Advisory

11 Sep 2023, 19:15

Type	Values Removed	Values Added
References		(MISC) http://packetstormsecurity.com/files/174606/VMware-vRealize-Log-Insight-Unauthenticated-Remote-Code-Execution.html -

Information

Published : 2023-01-26 21:15

Updated : 2024-11-21 07:05

NVD link : CVE-2022-31704

Mitre link : CVE-2022-31704

CVE.ORG link : CVE-2022-31704

JSON object : View

Products Affected

vmware

vrealize_log_insight

CWE

NVD-CWE-Other

{"id": "CVE-2022-31704", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2023-01-26T21:15:37.320", "references": [{"url": "http://packetstormsecurity.com/files/174606/VMware-vRealize-Log-Insight-Unauthenticated-Remote-Code-Execution.html", "source": "security@vmware.com"}, {"url": "https://www.vmware.com/security/advisories/VMSA-2023-0001.html", "tags": ["Patch", "Vendor Advisory"], "source": "security@vmware.com"}, {"url": "http://packetstormsecurity.com/files/174606/VMware-vRealize-Log-Insight-Unauthenticated-Remote-Code-Execution.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.vmware.com/security/advisories/VMSA-2023-0001.html", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "The vRealize Log Insight contains a broken access control vulnerability. An unauthenticated malicious actor can remotely inject code into sensitive files of an impacted appliance which can result in remote code execution."}, {"lang": "es", "value": "vRealize Log Insight contiene una vulnerabilidad de control de acceso roto. Un actor malintencionado no autenticado puede inyectar c\u00f3digo de forma remota en archivos confidenciales de un dispositivo afectado, lo que puede provocar la ejecuci\u00f3n remota de c\u00f3digo.\n"}], "lastModified": "2024-11-21T07:05:10.427", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:vmware:vrealize_log_insight:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "78E848BE-FFD0-40D3-AA72-17E47F616661", "versionEndIncluding": "4.8", "versionStartIncluding": "3.0"}, {"criteria": "cpe:2.3:a:vmware:vrealize_log_insight:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "476F80CF-8F34-402E-9175-E506B844724D", "versionEndExcluding": "8.10.2", "versionStartIncluding": "8.0.0"}], "operator": "OR"}]}], "sourceIdentifier": "security@vmware.com"}