CVE-2024-22272

Summary

VMware Cloud Director contains an Improper Privilege Management vulnerability.

An authenticated tenant administrator for a given organization within VMware Cloud Director may be able to accidentally disable their organization leading to a Denial of Service for active sessions within their own organization's scope.

Affected Software

VendorProductVersion RangeStatus
N/AVMware Cloud DirectorVMware Cloud Director 10.5.x, VMware Cloud Director 10.4.xaffected

Weaknesses

  • Improper Privilege Management

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References