CVE-2022-31704

Vulnerability updated 8 months ago (2024-05-05T07:18:55.112Z)

Download STIX

Preview STIX

Not enough context has been learned about CVE-2022-31704 for a description yet. However we're tracking it as a Vulnerability profile. Vulnerability: A flaw in software design or implementation

Description last updated:

What's your take? (Question 1 of 3)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Aliases We are not currently tracking any aliases

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Vmware

Vrealize

Vulnerability

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Associated Vulnerabilities

To see the evidence that has resulted in these vulnerability associations, create a free account

Alias Description	Association Type	Votes
The CVE-2022-31706 Vulnerability is associated with CVE-2022-31704. CVE-2022-31706 is a critical directory traversal vulnerability found in VMware's vRealize Log Insight software. This flaw, along with another broken access control vulnerability (CVE-2022-31704), and an information disclosure bug (CVE-2022-31711), carries severity scores of 9.8 out of 10 on the CVSS	Unspecified	2

Source Document References

Information about the CVE-2022-31704 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
CERT-EU	a year ago	VMware warns admins of public exploit for vRealize RCE flaw
DARKReading	2 years ago	Critical VMware RCE Vulnerabilities Targeted by Public Exploit Code
CERT-EU	2 years ago	PoC Exploit Released for VMware RCE Bug
Securityaffairs	2 years ago	Experts released VMware vRealize Log RCE exploit
CSO Online	2 years ago	Remote code execution exploit chain available for VMware vRealize Log Insight