Unrated severityCISA KEVNVD Advisory· Published Oct 25, 2023· Updated Oct 21, 2025
VMware vCenter Server Out-of-Bounds Write Vulnerability
CVE-2023-34048
Description
vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger an out-of-bounds write potentially leading to remote code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3(expand)+ 1 more
- (no CPE)
- (no CPE)range: 8.0
- VMware/VMware Cloud Foundation (VMware vCenter Server)v5Range: 5.x
Patches
Vulnerability mechanics
References
1News mentions
1- Inside the customer environment: Where threat actors, vulnerabilities, and exposed assets intersectTenable Blog · May 27, 2026