cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-31704,https://securityvulnerability.io/vulnerability/CVE-2022-31704,Broken Access Control in VMware vRealize Log Insight,"VMware vRealize Log Insight is exposed to a broken access control flaw that allows unauthenticated attackers to exploit the system by remotely injecting malicious code into its sensitive files. This vulnerability could lead to significant security breaches, as it enables unauthorized access and manipulation of critical application functionalities. It is crucial for organizations using affected versions of vRealize Log Insight to implement necessary patches and security measures to safeguard their systems.",Vmware,Vrealize Log Insight (vrli),9.8,CRITICAL,0.005450000055134296,false,false,false,false,,false,false,2023-01-26T21:15:00.000Z,0
CVE-2022-31706,https://securityvulnerability.io/vulnerability/CVE-2022-31706,Directory Traversal Vulnerability in VMware vRealize Log Insight,"The vRealize Log Insight product from VMware is susceptible to a directory traversal vulnerability. This flaw allows a malicious actor without authentication to exploit the system and inject files into the appliance's operating system. Such actions can lead to unauthorized remote code execution, posing significant risks to the integrity and security of the affected systems. Users of vRealize Log Insight should apply the recommended patches from VMware to mitigate potential threats as outlined in the security advisories.",Vmware,Vrealize Log Insight (vrli),9.8,CRITICAL,0.007710000034421682,false,false,false,false,,false,false,2023-01-26T21:15:00.000Z,0
CVE-2022-31710,https://securityvulnerability.io/vulnerability/CVE-2022-31710,Deserialization Vulnerability in vRealize Log Insight by VMware,"A significant deserialization vulnerability has been discovered in vRealize Log Insight, where an unauthenticated malicious actor can exploit this flaw to trigger the deserialization of untrusted data. This exploitation may lead to a denial of service, compromising the availability of the application. It's essential for users to apply the necessary updates to safeguard their systems from potential attacks that exploit this vulnerability.",Vmware,Vrealize Log Insight (vrli),7.5,HIGH,0.001339999958872795,false,false,false,false,,false,false,2023-01-26T21:15:00.000Z,0
CVE-2022-31711,https://securityvulnerability.io/vulnerability/CVE-2022-31711,,VMware vRealize Log Insight contains an Information Disclosure Vulnerability. A malicious actor can remotely collect sensitive session and application information without authentication.,Vmware,Vrealize Log Insight (vrli),5.3,MEDIUM,0.0026599999982863665,false,false,false,false,,false,false,2023-01-25T00:00:00.000Z,0
CVE-2022-31703,https://securityvulnerability.io/vulnerability/CVE-2022-31703,,"The vRealize Log Insight contains a Directory Traversal Vulnerability. An unauthenticated, malicious actor can inject files into the operating system of an impacted appliance which can result in remote code execution.",Vmware,Vrealize Log Insight (vrli),7.5,HIGH,0.001500000013038516,false,false,false,false,,false,false,2022-12-14T00:00:00.000Z,0