NVD disclosure day

Published threat advisories for March 29, 2022

CVE-2022-26871

Trend Micro Apex Central Arbitrary File Upload Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

Trend Micro Apex Central has a vulnerability allowing unauthorized remote attackers to upload files, potentially enabling remote code execution. This affects the integrity of security systems and poses a risk of unauthorized access.

NVD published: March 29, 2022 • CISA KEV

CVE advisoryKnown Exploit

CVE-2022-22948

VMware vCenter Server Information Disclosure Vulnerability

Halo Surface Signal: 2 out of 5 — less likely to be public-facing.

VMware vCenter Server is affected by an information disclosure vulnerability. A non-administrative user could gain access to sensitive information, impacting data confidentiality. This poses a business risk by potentially exposing confidential data.

NVD published: March 29, 2022 • CISA KEV