CVE-2024-22256

Summary

VMware Cloud Director contains a partial information disclosure vulnerability. A malicious actor can potentially gather information about organization names based on the behavior of the instance.

Affected Software

VendorProductVersion RangeStatus
n/aVMware Cloud DirectorVMware Cloud Director 10.5.x, 10.4.xaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References