Main Vulnerability Database Exploits ID:7549 - Exploit for Incorrect default permissions in vCenter Server - CVE-2022-22948

ID:7549 - Exploit for Incorrect default permissions in vCenter Server - CVE-2022-22948

Published: March 30, 2022

Vulnerability identifier: #VU61690

Vulnerability risk: High

CVE-ID: CVE-2022-22948

CWE-ID: CWE-276

Exploitation vector: Local access

Vulnerable software:
vCenter Server

Link to public exploit:

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to incorrect default permissions for files. A local user with access to the system can view contents of certain files.

Install updates from vendor's website.