CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-31702

vRealize Network Insight (vRNI) contains a command injection vulnerability present in the vRNI REST API. A malicious actor with network access to the vRNI REST API can execute commands without authentication.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 76.5%

CVSS Severity

CVSS v3 Score 9.8

References

Products affected by CVE-2022-31702

Vmware » Vrealize Network Insight » Version: 6.2.0

cpe:2.3:a:vmware:vrealize_network_insight:6.2.0
Vmware » Vrealize Network Insight » Version: 6.3.0

cpe:2.3:a:vmware:vrealize_network_insight:6.3.0
Vmware » Vrealize Network Insight » Version: 6.4.0

cpe:2.3:a:vmware:vrealize_network_insight:6.4.0
Vmware » Vrealize Network Insight » Version: 6.5.1

cpe:2.3:a:vmware:vrealize_network_insight:6.5.1
Vmware » Vrealize Network Insight » Version: 6.6.0

cpe:2.3:a:vmware:vrealize_network_insight:6.6.0
Vmware » Vrealize Network Insight » Version: 6.7.0

cpe:2.3:a:vmware:vrealize_network_insight:6.7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-31702

Products

Pricing

Contact Us