cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-31706,https://securityvulnerability.io/vulnerability/CVE-2022-31706,Directory Traversal Vulnerability in VMware vRealize Log Insight,"The vRealize Log Insight product from VMware is susceptible to a directory traversal vulnerability. This flaw allows a malicious actor without authentication to exploit the system and inject files into the appliance's operating system. Such actions can lead to unauthorized remote code execution, posing significant risks to the integrity and security of the affected systems. Users of vRealize Log Insight should apply the recommended patches from VMware to mitigate potential threats as outlined in the security advisories.",Vmware,Vrealize Log Insight (vrli),9.8,CRITICAL,0.007710000034421682,false,,false,false,true,2023-08-08T18:32:38.000Z,true,false,false,,2023-01-26T21:15:00.000Z,0
CVE-2022-31704,https://securityvulnerability.io/vulnerability/CVE-2022-31704,Broken Access Control in VMware vRealize Log Insight,"VMware vRealize Log Insight is exposed to a broken access control flaw that allows unauthenticated attackers to exploit the system by remotely injecting malicious code into its sensitive files. This vulnerability could lead to significant security breaches, as it enables unauthorized access and manipulation of critical application functionalities. It is crucial for organizations using affected versions of vRealize Log Insight to implement necessary patches and security measures to safeguard their systems.",Vmware,Vrealize Log Insight (vrli),9.8,CRITICAL,0.005450000055134296,false,,false,false,true,2023-08-08T18:32:38.000Z,true,false,false,,2023-01-26T21:15:00.000Z,0
CVE-2022-31710,https://securityvulnerability.io/vulnerability/CVE-2022-31710,Deserialization Vulnerability in vRealize Log Insight by VMware,"A significant deserialization vulnerability has been discovered in vRealize Log Insight, where an unauthenticated malicious actor can exploit this flaw to trigger the deserialization of untrusted data. This exploitation may lead to a denial of service, compromising the availability of the application. It's essential for users to apply the necessary updates to safeguard their systems from potential attacks that exploit this vulnerability.",Vmware,Vrealize Log Insight (vrli),7.5,HIGH,0.001339999958872795,false,,false,false,false,,,false,false,,2023-01-26T21:15:00.000Z,0
CVE-2022-31711,https://securityvulnerability.io/vulnerability/CVE-2022-31711,Information Disclosure Vulnerability in VMware vRealize Log Insight,"VMware vRealize Log Insight is affected by an information disclosure vulnerability that allows unauthorized users to access sensitive session and application data. This vulnerability enables an attacker to remotely collect valuable information without the need for authentication, posing a risk to data integrity and privacy.",Vmware,Vrealize Log Insight (vrli),5.3,MEDIUM,0.0026599999982863665,false,,false,false,true,2023-08-08T18:32:38.000Z,true,false,false,,2023-01-25T00:00:00.000Z,0
CVE-2022-31703,https://securityvulnerability.io/vulnerability/CVE-2022-31703,Directory Traversal Vulnerability in vRealize Log Insight by VMware,"The vRealize Log Insight product by VMware is exposed to a directory traversal vulnerability that allows unauthenticated attackers to inject files into the operating system of the affected appliance. This weakness can lead to potential remote code execution, significantly compromising the integrity and security of the system. Organizations utilizing this product should evaluate their exposure and take necessary actions to mitigate risks associated with this vulnerability.",Vmware,Vrealize Log Insight (vrli),7.5,HIGH,0.001500000013038516,false,,false,false,false,,,false,false,,2022-12-14T00:00:00.000Z,0