VMWare vRealize Log Insight Multiple Vulnerabilities
RISK: High Risk
TYPE: Operating Systems - VM Ware
Multiple vulnerabilities were identified in VMware vRealize Log Insight. A remote attacker could exploit some of these vulnerabilities to trigger denial of service, remote code execution and sensitive information disclosure on the targeted system.
[Updated on 2023-02-01]
Proof of Concept exploit code Is publicly available for CVE-2022-31704, CVE-2022-31706, and CVE-2022-31711. Risk level has changed from Medium Risk to High Risk.
- Denial of Service
- Remote Code Execution
- Information Disclosure
System / Technologies affected
- VMware vRealize Log Insight 8.x
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor: