← ExploitWatch
HomeExploited Vulnerabilities

CVE-2023-34048 — Actively Exploited: vCenter Server (VMware)

VMware vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC protocol that allows an attacker to conduct remote code execution.

CVE IDCVE-2023-34048
VendorVMware
ProductvCenter Server
Vulnerability nameVMware vCenter Server Out-of-Bounds Write Vulnerability
Date added2024-01-22
Remediation due2024-02-12
Known ransomware useUnknown
Required actionApply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
DescriptionVMware vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC protocol that allows an attacker to conduct remote code execution.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →