CVE-2023-34048
25.10.2023, 18:17
vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC protocol.A malicious actor with network access to vCenter Server may trigger an out-of-bounds write potentially leading to remote code execution.Enginsight
| Vendor | Product | Version |
|---|---|---|
| vmware | vcenter_server | 4.0 ≤ 𝑥 ≤ 5.5 |
| vmware | vcenter_server | 7.0 |
| vmware | vcenter_server | 7.0:a |
| vmware | vcenter_server | 7.0:b |
| vmware | vcenter_server | 7.0:c |
| vmware | vcenter_server | 7.0:d |
| vmware | vcenter_server | 7.0:update1 |
| vmware | vcenter_server | 7.0:update1a |
| vmware | vcenter_server | 7.0:update1c |
| vmware | vcenter_server | 7.0:update1d |
| vmware | vcenter_server | 7.0:update2 |
| vmware | vcenter_server | 7.0:update2a |
| vmware | vcenter_server | 7.0:update2b |
| vmware | vcenter_server | 7.0:update2c |
| vmware | vcenter_server | 7.0:update2d |
| vmware | vcenter_server | 7.0:update3 |
| vmware | vcenter_server | 7.0:update3a |
| vmware | vcenter_server | 7.0:update3c |
| vmware | vcenter_server | 7.0:update3d |
| vmware | vcenter_server | 7.0:update3e |
| vmware | vcenter_server | 7.0:update3f |
| vmware | vcenter_server | 7.0:update3g |
| vmware | vcenter_server | 7.0:update3h |
| vmware | vcenter_server | 7.0:update3i |
| vmware | vcenter_server | 7.0:update3j |
| vmware | vcenter_server | 7.0:update3k |
| vmware | vcenter_server | 7.0:update3l |
| vmware | vcenter_server | 7.0:update3m |
| vmware | vcenter_server | 7.0:update3n |
| vmware | vcenter_server | 8.0 |
| vmware | vcenter_server | 8.0:a |
| vmware | vcenter_server | 8.0:b |
| vmware | vcenter_server | 8.0:c |
| vmware | vcenter_server | 8.0:update1 |
| vmware | vcenter_server | 8.0:update1a |
| vmware | vcenter_server | 8.0:update1b |
| vmware | vcenter_server | 8.0:update1c |
𝑥
= Vulnerable software versions
Common Weakness Enumeration