CVE-2022-31672 - VMware vRealize Operations contains a privilege escalation vulnerability. A malicious actor with adm

CVE-2022-31672

Summary

VMware vRealize Operations contains a privilege escalation vulnerability. A malicious actor with administrative network access can escalate privileges to root.

References

https://www.vmware.com/security/advisories/VMSA-2022-0022.html

Vulnerable Configurations

cpe:2.3:a:vmware:vrealize_operations:8.6.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.0:hotfix1:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.0:hotfix1:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.0:hotfix2:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.0:hotfix2:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.0:hotfix4:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.0:hotfix4:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.0:hotfix5:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.0:hotfix5:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.0:hotfix6:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.0:hotfix6:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.0:hotfix8:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.0:hotfix8:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.0:hotfix9:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.0:hotfix9:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.3:*:*:*:*:*:*:*
cpe:2.3:a:vmware:vrealize_operations:8.6.3:*:*:*:*:*:*:*

CVSS

Base:	None
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication

Impact

Confidentiality	Integrity	Availability

Last major update

08-08-2023 - 14:22

Published

10-08-2022 - 20:15

Last modified

08-08-2023 - 14:22