The vCenter Server contains an unsafe deserialisation vulnerability in the PSC (Platform services controller). A malicious actor with admin access on vCenter server may exploit this issue to execute arbitrary code on the underlying operating system that hosts the vCenter Server.
2022-10-07T21:15:11.247
2024-11-21T07:05:06.870
Modified
CVSSv3.1: 9.1 (CRITICAL)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | vmware | vcenter_server | < 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |
| Application | vmware | vcenter_server | 6.5 | Yes |