cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-38814,https://securityvulnerability.io/vulnerability/CVE-2024-38814,VMware HCX Authenticated SQL Injection Vulnerability,"The article discusses a high-severity SQL injection vulnerability in VMware HCX, tracked as CVE-2024-38814, which allows non-admin users to execute remote code on the HCX manager. The vulnerability was privately reported to VMware, impacting multiple versions of the HCX platform. An authenticated user with non-admin rights could exploit the flaw and execute unauthorized remote code on the HCX manager. The article also mentions that updates are available to remediate this vulnerability in affected VMware products.",VMware,Vmware Hcx,8.8,HIGH,0.0006900000153109431,false,,true,false,true,2024-10-16T00:00:00.000Z,,false,false,,2024-10-16T17:15:00.000Z,0
CVE-2022-22953,https://securityvulnerability.io/vulnerability/CVE-2022-22953,Information Disclosure Vulnerability in VMware HCX Appliance,"An information disclosure vulnerability exists in VMware HCX, which allows a malicious actor with network user access to the appliance to potentially gain access to sensitive information. This poses risks for data security, emphasizing the importance of applying security updates to safeguard information from unauthorized access.",Vmware,Vmware Hcx,6.5,MEDIUM,0.000590000010561198,false,,false,false,false,,,false,false,,2022-06-16T15:54:54.000Z,0