CVE-2022-31704

CRITICAL EXPLOITED NUCLEI

Vmware Vrealize Log Insight < 4.8 - Improper Access Control

Title source: rule

Description

The vRealize Log Insight contains a broken access control vulnerability. An unauthenticated malicious actor can remotely inject code into sensitive files of an impacted appliance which can result in remote code execution.

Exploits (2)

metasploit WORKING POC EXCELLENT

by Horizon3.ai Attack Team · rubypoclinux

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/vmware_vrli_rce.rb

View Code ZIP pw:eip

vulncheck_xdb WORKING POC

remote

https://github.com/horizon3ai/vRealizeLogInsightRCE

View Code ZIP pw:eip

Nuclei Templates (1)

VMware vRealize Log Insight - Improper Access Control to RCE

CRITICALby ritikchaddha

Shodan: http.title:"vrealize log insight"

FOFA: title="vrealize log insight"

References (3)

[Exploit, Third Party Advisory] http://packetstormsecurity.com/files/174606/VMware-vRealize-Log-Insight-Unauthenticated-Remote-Code-Execution.html

[Patch, Vendor Advisory] https://www.vmware.com/security/advisories/VMSA-2023-0001.html

[Various Sources] https://packetstorm.news/files/id/174606

Scores

CVSS v3 9.8

EPSS 0.8984

EPSS Percentile 99.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2023-12-20

CWE

CWE-284

Status published

Products (1)

vmware/vrealize_log_insight 3.0 - 4.8

Published Jan 26, 2023

Tracked Since Feb 18, 2026