CVE-2022-22966

Name of the Vulnerable Software and Affected Versions VMware vCloud Director (affected versions not specified)

Description The issue is related to insufficient input validation in the VMware vCloud Director platform, which can be exploited by a remote attacker to execute arbitrary code. An authenticated, high-privileged malicious actor with network access to the VMware Cloud Director tenant or provider may exploit this vulnerability to gain access to the server. This can potentially allow attackers to gain access to sensitive data and take over private clouds within an entire infrastructure.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.