Security Advisory

CVE-2022-31697

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-12-13 00:00:00

Last updated 2025-04-22 15:50:24

Assigner vmware

State PUBLISHED

Description

The vCenter Server contains an information disclosure vulnerability due to the logging of credentials in plaintext. A malicious actor with access to a workstation that invoked a vCenter Server Appliance ISO operation (Install/Upgrade/Migrate/Restore) can access plaintext passwords used during that operation.

← Browse all CVEs View on cve.org ↗