CVE-2022-23240

Summary

Active IQ Unified Manager for VMware vSphere, Linux, and Microsoft Windows versions prior to 9.11P1 are susceptible to a vulnerability which allows unauthorized users to update EMS Subscriptions via unspecified vectors.

Affected Software

VendorProductVersion RangeStatus
n/aActive IQ Unified Manager for VMware vSphere, Linux, and Microsoft Windowsprior to 9.11P1affected

Weaknesses

  • Improper Authorization

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References