THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Fathom (Privacy friendly web analytics)
Zendesk (Helpdesk and Chat)

Ok

Home | EN
Support
CVE
PUBLISHED

CVE-2024-37081

Assignervmware
Reserved2024-06-03
Published2024-06-18
Updated2024-07-11

Description

The vCenter Server contains multiple local privilege escalation vulnerabilities due to misconfiguration of sudo. An authenticated local user with non-administrative privileges may exploit these issues to elevate privileges to root on vCenter Server Appliance.



HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Problem types

Local privilege escalation vulnerability

Product status

Default status
unaffected

8.0 before 8.0 U2d
affected

7.0 before 7.0 U3r
affected

Default status
unaffected

5.x
affected

4.x
affected

References

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24453

cve.org CVE-2024-37081

nvd.nist.gov CVE-2024-37081

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-37081