CVE-2023-34056
CVSS 3.1 Score 4.3 of 10 (medium)
Details
Summary
CVE-2023-34056 is a partial information disclosure vulnerability affecting vCenter Server. This issue allows non-administrative users to gain unauthorized access to sensitive data. While they do not have full control over the server, they can still obtain valuable information that could potentially be used for further attacks. The exact nature of the data that can be accessed is not clear, but it is considered a serious security concern for organizations using vCenter Server. It is strongly recommended that affected organizations apply the available patch as soon as possible to mitigate this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- VMware vCenter Server
Affected Vendors
- VMware Inc.