CVE-2022-31711

Summary

VMware vRealize Log Insight contains an Information Disclosure Vulnerability. A malicious actor can remotely collect sensitive session and application information without authentication.

Affected Software

VendorProductVersion RangeStatus
n/avRealize Log Insight (vRLI)vRealize Log Insight 8.10.1 and prioraffected

Weaknesses

  • VMware vRealize Log Insight Information Disclosure Vulnerability

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References