Unauthorized EMS Subscription Update Vulnerability in Active IQ Unified Manager

Unauthorized EMS Subscription Update Vulnerability in Active IQ Unified Manager

CVE-2022-23240 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Active IQ Unified Manager for VMware vSphere, Linux, and Microsoft Windows versions prior to 9.11P1 are susceptible to a vulnerability which allows unauthorized users to update EMS Subscriptions via unspecified vectors.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.