Deserialization Vulnerability in vRealize Log Insight by VMware
CVE-2022-31710
7.5HIGH
What is CVE-2022-31710?
A significant deserialization vulnerability has been discovered in vRealize Log Insight, where an unauthenticated malicious actor can exploit this flaw to trigger the deserialization of untrusted data. This exploitation may lead to a denial of service, compromising the availability of the application. It's essential for users to apply the necessary updates to safeguard their systems from potential attacks that exploit this vulnerability.
Affected Version(s)
vRealize Log Insight (vRLI) vRealize Log Insight 8.10.1 and prior