Vulnerability CVE-2022-31680 - CERT Civis.Net

Vulnerability Name:

CVE-2022-31680 (CCN-237951)

Assigned:

2022-10-06

Published:

2022-10-06

Updated:

2022-10-11

Summary:

The vCenter Server contains an unsafe deserialisation vulnerability in the PSC (Platform services controller). A malicious actor with admin access on vCenter server may exploit this issue to execute arbitrary code on the underlying operating system that hosts the vCenter Server.

CVSS v3 Severity:

9.1 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H)
7.9 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): High User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

7.2 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)
6.3 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): High User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

9.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2022-31680

Source: XF
Type: UNKNOWN
vmware-cve202231680-code-exec(237951)

Source: MISC
Type: Exploit, Third Party Advisory
https://www.talosintelligence.com/vulnerability_reports/TALOS-2022-1587

Source: CCN
Type: VMware Security Advisory VMSA-2022-0025
CVE-2022-31680, CVE-2022-31681

Source: MISC
Type: Vendor Advisory
https://www.vmware.com/security/advisories/VMSA-2022-0025.html

Vulnerable Configuration:

Configuration 1:

cpe:/a:vmware:vcenter_server:6.5:d:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:c:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:b:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:a:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:-:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update3n:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update1:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update1c:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update1b:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update3t:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update3u:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update1d:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update1e:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update1g:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update2:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update2b:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update2c:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update2d:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update2g:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update3:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update3d:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update3f:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update3k:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update3p:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update3q:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update3r:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.5:update3s:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:*:*:*:*:*:*:*:* (Version < 6.5)

Configuration CCN 1:

cpe:/a:vmware:vcenter_server:6.5:*:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:6.7:*:*:*:*:*:*:*

OR cpe:/a:vmware:vcenter_server:7.0:-:*:*:*:*:*:*

Denotes that component is vulnerable