Unrated severityNVD Advisory· Published Jun 22, 2023· Updated Feb 13, 2025
VMware vCenter Server heap-overflow vulnerability
CVE-2023-20892
Description
The vCenter Server contains a heap overflow vulnerability due to the usage of uninitialized memory in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may exploit heap-overflow vulnerability to execute arbitrary code on the underlying operating system that hosts vCenter Server.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3(expand)+ 1 more
- (no CPE)
- (no CPE)range: 8.0
- VMware/VMware Cloud Foundation (vCenter Server)v5Range: 5.x
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.