Unrated severityNVD Advisory· Published Nov 13, 2018· Updated Aug 5, 2024
CVE-2018-6980
CVE-2018-6980
Description
VMware vRealize Log Insight (4.7.x before 4.7.1 and 4.6.x before 4.6.2) contains a vulnerability due to improper authorization in the user registration method. Successful exploitation of this issue may allow Admin users with view only permission to perform certain administrative functions which they are not allowed to perform.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2>= 4.6.0, < 4.6.2; >= 4.7.0, < 4.7.1+ 1 more
- (no CPE)range: >= 4.6.0, < 4.6.2; >= 4.7.0, < 4.7.1
- (no CPE)range: VVMware vRealize Log Insight (4.7.x before 4.7.1 and 4.6.x before 4.6.2)
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/105925mitrevdb-entryx_refsource_BID
- www.vmware.com/security/advisories/VMSA-2018-0028.htmlmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.