VDB
WID-SEC-W-2023-1449
WID-SEC-W-2023-1449
PUBLISHED
Die Virtualisierungssoftware von VMware ermöglicht die simultane Ausführung von verschiedenen Betriebssystemen auf einem Host-System. VMware Cloud Foundation ist eine Hybrid Cloud-Plattform für VM-Management und Container-Orchestrierung.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| VMware Cloud Foundation < 3.11 | ||
| VMware vCenter Server < 6.5 U3r | ||
| VMware vCenter Server < 6.7 U3p | ||
| VMware vCenter Server < 7.0 U3d |
Exploit Intelligence
- Scanner for CVE-2022-22948 an Information Disclosure in VMWare vCenter (github-poc-repo)
- Scanner for CVE-2022-22948 an Information Disclosure in VMWare vCenter (github-poc)
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2023-1449.json (circl)
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1449 (circl)
- https://www.mandiant.com/resources/blog/vmware-esxi-zero-day-bypass (circl)
- https://www.vmware.com/security/advisories/VMSA-2022-0009.html (circl)
- kev.json (github-poc)
- data.js (github-poc)
Timeline
- Mar 29, 2022 CVE Published
- Jun 15, 2023 CVE Updated
References
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2023-1449.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1449 advisory
- https://www.mandiant.com/resources/blog/vmware-esxi-zero-day-bypass url
- https://www.vmware.com/security/advisories/VMSA-2022-0009.html url