CVE-2024-37087

5.3

Medium

Published:25 Jun 2024

Last updated:17 Jun 2026

Source:security@vmware.com

Analyzed

Weakness (CWE)

CWE-732Incorrect Permission Assignment

CVSS Vector

v3.1

Attack Vector: Network
Attack Complexity: Low
Privileges Required: None
User Interaction: None
Scope: Unchanged
Confidentiality: None
Integrity: None
Availability: Low

View on MITRE Find PoC on GitHub

Description

The vCenter Server contains a denial-of-service vulnerability. A malicious actor with network access to vCenter Server may create a denial-of-service condition.

References

security@vmware.com

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24505

af854a3a-2127-422b-91ae-364da2661108

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24505