Navigation
Recherche
|
‘Unauthorized API’ in vCenter blows critical hole in VMware cost management tool
jeudi 6 mai 2021, 04:52 , par TheRegister
Remote code execution possible on vRealize Business for Cloud – which knows a lot about your private and public platforms
VMware has admitted its vRealize Business for Cloud product includes an “unauthorised VAMI API” that can be exploited to achieve remote code execution on a virtual appliance. The security flaw is rated critical, scoring 9.8 on the ten-point Common Vulnerability Scoring System.…
https://go.theregister.com/feed/www.theregister.com/2021/05/06/unauthorised_api_creates_critical_fla
|
56 sources (32 en français)
Date Actuelle
ven. 3 mai - 17:42 CEST
|