Home

CVE-2019-5534

Description

VMware vCenter Server (6.7.x prior to 6.7 U3, 6.5 prior to 6.5 U3 and 6.0 prior to 6.0 U3j) contains an information disclosure vulnerability where Virtual Machines deployed from an OVF could expose login information via the virtual machines vAppConfig properties. A malicious actor with access to query the vAppConfig properties of a virtual machine deployed from an OVF may be able to view the credentials used to deploy the OVF (typically the root account of the virtual machine).

Risk Information

Base Score
7.7
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.36

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in VMware vCenter Server 6.0Windows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5Windows
Vulnerabilities CVE-2017-4927,CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-u3iWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-aWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-bWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-u1Windows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-u1bWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-u2Windows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-u2aWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-u2mWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-u3Windows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-u3aWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-u3bWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-u3cWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-u3dWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-u3eWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-u3fWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-u3gWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-u3hWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-update2Windows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-update2aWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-update2mWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-update3aWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-update3bWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-update3cWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-update3dWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-update3eWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-update3fWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-update3gWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-update3hWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534 are affected in VMware vCenter Server 6.0-update3iWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-aWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-bWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-cWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-dWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-u1Windows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-u1bWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-u1cWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-u1dWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-u1eWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-u1gWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-u2Windows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-u2bWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-u2cWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-u2dWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-u2gWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-update1Windows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-update1bWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-update1cWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-update1dWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-update1eWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-update1gWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-update2Windows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-update2bWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-update2cWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-update2dWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5-update2gWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.7Windows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.7-aWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.7-bWindows
Vulnerabilities CVE-2019-5531,CVE-2019-5532,CVE-2019-5534,CVE-2022-31697 are affected in VMware vCenter Server 6.7-cWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.7-dWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.7-u1Windows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.7-u1bWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.7-u2Windows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.7-u2aWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.7-u2cWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.7-update1Windows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.7-update1bWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.7-update2Windows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.7-update2aWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.7-update2cWindows

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234