Vmware cloud director
This hub aggregates every CVE we track for Vmware cloud director, a product in the cloud saas space. Use it to gauge the current risk picture and drill into individual advisories.
9
CVEs tracked
3
Critical
3
High
0
In CISA KEV
Severity distribution
HIGH3MEDIUM3CRITICAL3
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 9 most recently published vulnerabilities affecting Vmware cloud director.
- CVE-2024-22272VMware Cloud Director contains an Improper Privilege Management vulnerability. An authenticated tenant administrator for a given organization within VMware Cloud Director may be able to accide...4.9
- CVE-2024-22256VMware Cloud Director contains a partial information disclosure vulnerability. A malicious actor can potentially gather information about organization names based on the behavior of the instance.4.3
- CVE-2023-34060VMware Cloud Director Appliance contains an authentication bypass vulnerability in case VMware Cloud Director Appliance was upgraded to 10.5 from an older version. On an upgraded version of VMware...9.8
- CVE-2022-31678VMware Cloud Foundation (NSX-V) contains an XML External Entity (XXE) vulnerability. On VCF 3.x instances with NSX-V deployed, this may allow a user to exploit this issue leading to a denial-of-ser...9.1
- CVE-2022-22966An authenticated, high privileged malicious actor with network access to the VMware Cloud Director tenant or provider may be able to exploit a remote code execution vulnerability to gain access to ...7.2
- CVE-2020-3956VMware Cloud Director 10.0.x before 10.0.0.2, 9.7.0.x before 9.7.0.5, 9.5.0.x before 9.5.0.6, and 9.1.0.x before 9.1.0.4 do not properly handle input leading to a code injection vulnerability. An a...8.8
- CVE-2019-11478SACK can cause extensive memory use via fragmented resend queue5.3
- CVE-2019-11477Integer overflow in TCP_SKB_CB(skb)->tcp_gso_segs7.5
- CVE-2019-5523VMware vCloud Director for Service Providers 9.5.x prior to 9.5.0.3 update resolves a Remote Session Hijack vulnerability in the Tenant and Provider Portals. Successful exploitation of this issue m...9.8
Product normalization is registry-driven with AI assist and human review. How it works