Skip to main content

VMware Identity Manager and vRealize Automation Multiple Vulnerabilities

Last Update Date: 25 Aug 2016 09:07 Release Date: 25 Aug 2016 3663 Views

RISK: Medium Risk

TYPE: Operating Systems - VM Ware

TYPE: VM Ware

Two vulnerabilities were identified in VMware vRealize Automation. A local user can obtain root privileges on the target system. A remote user can execute arbitrary code on the target system. The first vulnerability also affects VMware Identity Manager.


Impact

  • Elevation of Privilege
  • Remote Code Execution

System / Technologies affected

  • vRealize Automation 7.0.x
  • VMware Identity Manager 2.x

 


Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to vRealize Automation 7.1
  • Update to VMware Identity Manager 2.7

Vulnerability Identifier


Source


Related Link