cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-22256,https://securityvulnerability.io/vulnerability/CVE-2024-22256,VMware Cloud Director Partial Information Disclosure Vulnerability,VMware Cloud Director contains a partial information disclosure vulnerability. A malicious actor can potentially gather information about organization names based on the behavior of the instance.,VMware,Vmware Cloud Director,4.3,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-03-07T10:08:20.579Z,0
CVE-2023-34060,https://securityvulnerability.io/vulnerability/CVE-2023-34060,Authentication Bypass in VMware Cloud Director Appliance Versions,"The VMware Cloud Director Appliance has a vulnerability that permits malicious actors to bypass authentication on SSH and appliance management console ports (22 and 5480) following an upgrade from an earlier version to 10.5. This flaw arises due to the appliance's use of an affected version of sssd on the underlying Photon OS, which does not occur in fresh installations of 10.5. Users can safeguard their systems by ensuring they upgrade to Photon OS versions sssd-2.8.1-11 or higher, mitigating this security risk. The issue does not affect the primary login portal operating on port 443.",Vmware,VMware Cloud Director Appliance (VCD Appliance),9.8,CRITICAL,0.0019000000320374966,false,true,false,false,,false,false,2023-11-14T21:15:00.000Z,0
CVE-2022-22966,https://securityvulnerability.io/vulnerability/CVE-2022-22966,,"An authenticated, high privileged malicious actor with network access to the VMware Cloud Director tenant or provider may be able to exploit a remote code execution vulnerability to gain access to the server.",Vmware,Vmware Cloud Director,7.2,HIGH,0.0025500000920146704,false,false,false,true,true,false,false,2022-04-14T20:05:49.000Z,0
CVE-2021-22034,https://securityvulnerability.io/vulnerability/CVE-2021-22034,,Releases prior to VMware vRealize Operations Tenant App 8.6 contain an Information Disclosure Vulnerability.,Vmware,Vmware Vrealize Operations Tenant App For Vmware Cloud Director,7.5,HIGH,0.0018599999602884054,false,false,false,false,,false,false,2021-10-21T19:35:10.000Z,0
CVE-2020-3956,https://securityvulnerability.io/vulnerability/CVE-2020-3956,,"VMware Cloud Director 10.0.x before 10.0.0.2, 9.7.0.x before 9.7.0.5, 9.5.0.x before 9.5.0.6, and 9.1.0.x before 9.1.0.4 do not properly handle input leading to a code injection vulnerability. An authenticated actor may be able to send malicious traffic to VMware Cloud Director which may lead to arbitrary remote code execution. This vulnerability can be exploited through the HTML5- and Flex-based UIs, the API Explorer interface and API access.",Vmware,Vmware Cloud Director,8.8,HIGH,0.6381499767303467,false,false,false,true,true,false,false,2020-05-20T13:30:58.000Z,0