CVE-2024-38818

MEDIUM EPSS 17.5%

Published Oct 9, 20241y ago · Modified Jun 17, 20261w ago

6.7 CVSS 3.1

Medium

Published Oct 9, 2024 1y ago

Last Modified Jun 17, 2026 1w ago

Description

VMware NSX contains a local privilege escalation vulnerability. An authenticated malicious actor may exploit this vulnerability to obtain permissions from a separate group role than previously assigned.

CVSS Details

Base Score

6.7

Exploitability

1.2

Impact

5.5

Vector string

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:L

Attack Vector Network

Attack Complexity High

Privileges Required Low

User Interaction Required

Scope Unchanged

Confidentiality High

Integrity High

Availability Low

Threat Intelligence

EPSS Exploit Probability

17.5% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

Weaknesses 1

CWE-269 Improper Privilege Management Authorization

References 1

support.broadcom.com https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25047

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.