Information Disclosure Vulnerability in VMware HCX Appliance
CVE-2022-22953

6.5MEDIUM

Key Information:

Vendor: Vmware
Status: Vmware Hcx
Vendor: CVE Published:; 16 June 2022

Summary

An information disclosure vulnerability exists in VMware HCX, which allows a malicious actor with network user access to the appliance to potentially gain access to sensitive information. This poses risks for data security, emphasizing the importance of applying security updates to safeguard information from unauthorized access.

Affected Version(s)

VMware HCX 4.3.1 and 4.3.2

References

https://www.vmware.com/security/advisories/VMSA-2022-0017...

x_refsource_MISC

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 16, 2022
Vulnerability Reserved
Jan 10, 2022