CVE-2024-38814

An authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware. A malicious authenticated user with non-administrator privileges may be able to enter specially crafted SQL queries and perform unauthorized remote code execution on the HCX manager. Updates are available to remediate this vulnerability in affected VMware products.

CVSS v3 8.8 HIGH

8.8^/10

CVSS v3 : HIGH

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25019	Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:vmware:vmware_hcx::::::::
	cpe:2.3:a:vmware:vmware_hcx::::::::
	cpe:2.3:a:vmware:vmware_hcx:4.10.0:::::::*

History

21 Oct 2024, 18:20

Type	Values Removed	Values Added
References	~~() https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25019 -~~	() https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25019 - Third Party Advisory
First Time		Vmware Vmware vmware Hcx
CPE		cpe:2.3:a:vmware:vmware_hcx:::::::: cpe:2.3:a:vmware:vmware_hcx:4.10.0:::::::*

18 Oct 2024, 12:53

Type	Values Removed	Values Added
Summary		(es) VMware recibió un informe privado sobre una vulnerabilidad de inyección SQL autenticada en VMware HCX. Un usuario autenticado malintencionado con privilegios que no sean de administrador podría ingresar consultas SQL especialmente manipuladas y ejecutar código remoto no autorizado en el administrador HCX. Hay actualizaciones disponibles para solucionar esta vulnerabilidad en los productos VMware afectados.

16 Oct 2024, 17:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-10-16 17:15

Updated : 2024-10-21 18:20

NVD link : CVE-2024-38814

Mitre link : CVE-2024-38814

CVE.ORG link : CVE-2024-38814

JSON object : View

Products Affected

vmware

vmware_hcx

CWE

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

{"id": "CVE-2024-38814", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "security@vmware.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}]}, "published": "2024-10-16T17:15:16.237", "references": [{"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25019", "tags": ["Third Party Advisory"], "source": "security@vmware.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-89"}]}, {"type": "Secondary", "source": "security@vmware.com", "description": [{"lang": "en", "value": "CWE-89"}]}], "descriptions": [{"lang": "en", "value": "An authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware. A\n malicious authenticated user with non-administrator privileges may be \nable to enter specially crafted SQL queries and perform unauthorized \nremote code execution on the HCX manager.\u00a0\nUpdates are available to remediate this vulnerability in affected VMware products."}, {"lang": "es", "value": "VMware recibi\u00f3 un informe privado sobre una vulnerabilidad de inyecci\u00f3n SQL autenticada en VMware HCX. Un usuario autenticado malintencionado con privilegios que no sean de administrador podr\u00eda ingresar consultas SQL especialmente manipuladas y ejecutar c\u00f3digo remoto no autorizado en el administrador HCX. Hay actualizaciones disponibles para solucionar esta vulnerabilidad en los productos VMware afectados."}], "lastModified": "2024-10-21T18:20:53.267", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:vmware:vmware_hcx:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "15F4C6D8-CF9F-4341-8315-0E4B38E641A8", "versionEndIncluding": "4.8.2", "versionStartIncluding": "4.8.0"}, {"criteria": "cpe:2.3:a:vmware:vmware_hcx:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7DBB07C1-116E-4C35-9614-C8495BFCF894", "versionEndIncluding": "4.9.1", "versionStartIncluding": "4.9.0"}, {"criteria": "cpe:2.3:a:vmware:vmware_hcx:4.10.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BAD018FC-6937-4DB3-9518-14B6D4A41C41"}], "operator": "OR"}]}], "sourceIdentifier": "security@vmware.com"}