Server-Side Request Forgery in VMware vCenter Server
CVE-2022-22982
7.5HIGH
What is CVE-2022-22982?
VMware vCenter Server has a vulnerability that allows a malicious actor with network access to the server to perform server-side request forgery (SSRF) attacks. This could result in unauthorized access to URLs or internal services, potentially exposing sensitive information and affecting the operational integrity of the system. It is crucial for administrators to assess their exposure and apply necessary security measures to mitigate the risk.
Affected Version(s)
VMware vCenter Server VMware vCenter Server (7.0 before 7.0 U3f, 6.7 before 6.7 U3r & 6.5 before 6.5 U3t)