Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware vrealize operations vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-31673
VMware vRealize Operations contains an information disclosure vulnerability. A low-privileged malicious actor with network access can create and leak hex dumps, leading to information disclosure. Successful exploitation can lead to a remote code execution.
Vmware Vrealize Operations
1 Article
NA
CVE-2022-31674
VMware vRealize Operations contains an information disclosure vulnerability. A low-privileged malicious actor with network access can access log files that lead to information disclosure.
Vmware Vrealize Operations
1 Github repository
1 Article
NA
CVE-2022-31675
VMware vRealize Operations contains an authentication bypass vulnerability. An unauthenticated malicious actor with network access may be able to create a user with administrative privileges.
Vmware Vrealize Operations
1 Github repository
1 Article
NA
CVE-2022-31682
VMware Aria Operations contains an arbitrary file read vulnerability. A malicious actor with administrative privileges may be able to read arbitrary files containing sensitive data.
Vmware Vrealize Operations
7.2
CVSSv2
CVE-2018-6978
vRealize Operations (7.x prior to 7.0.0.11287810, 6.7.x prior to 6.7.0.11286837 and 6.6.x prior to 6.6.1.11286876) contains a local privilege escalation vulnerability due to improper permissions of support scripts. Admin user of the vROps application with shell access may exploit...
Vmware Vrealize Operations
NA
CVE-2023-20856
VMware vRealize Operations (vROps) contains a CSRF bypass vulnerability. A malicious user could execute actions on the vROps platform on behalf of the authenticated victim user.
Vmware Vrealize Operations
5
CVSSv2
CVE-2020-3944
vRealize Operations for Horizon Adapter (6.7.x before 6.7.1 and 6.6.x before 6.6.1) has an improper trust store configuration leading to authentication bypass. An unauthenticated remote attacker who has network access to vRealize Operations, with the Horizon Adapter running, may ...
Vmware Vrealize Operations
5
CVSSv2
CVE-2021-22034
Releases prior to VMware vRealize Operations Tenant App 8.6 contain an Information Disclosure Vulnerability.
Vmware Vrealize Operations Tenant
NA
CVE-2023-20887
Aria Operations for Networks contains a command injection vulnerability. A malicious actor with network access to VMware Aria Operations for Networks may be able to perform a command injection attack resulting in remote code execution.
Vmware Vrealize Network Insight
1 Metasploit module
4 Github repositories
1 Article
7.5
CVSSv2
CVE-2015-6934
Serialized-object interfaces in VMware vRealize Orchestrator 6.x, vCenter Orchestrator 5.x, vRealize Operations 6.x, vCenter Operations 5.x, and vCenter Application Discovery Manager (vADM) 7.x allow remote malicious users to execute arbitrary commands via a crafted serialized Ja...
Vmware Vcenter Orchestrator 5.5.2
Vmware Vcenter Orchestrator 5.5.1
Vmware Vcenter Orchestrator 5.5.2.1
Vmware Vrealize Orchestrator 6.0.1
Vmware Vrealize Orchestrator 6.0.2
Vmware Vcenter Orchestrator 5.5
Vmware Vrealize Orchestrator 6.0.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30078
CVE-2024-37896
code injection
CVE-2024-3080
CVE-2024-5172
cross-site request forgery
CVE-2024-6111
firmware
CVE-2024-38504
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »