Security Advisory

CVE-2023-20858

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-02-21 00:00:00

Last updated 2025-03-17 18:25:57

Assigner vmware

State PUBLISHED

Description

VMware Carbon Black App Control 8.7.x prior to 8.7.8, 8.8.x prior to 8.8.6, and 8.9.x.prior to 8.9.4 contain an injection vulnerability. A malicious actor with privileged access to the App Control administration console may be able to use specially crafted input allowing access to the underlying server operating system.

← Browse all CVEs View on cve.org ↗