VMware fixes a high-severity SQL injection flaw in HCX allowing non-admin users to remotely execute code on the HCX manager. VMWare warns to address a remote code execution vulnerability, tracked as CVE-2024-38814 (CVSS score of 8.8), in its HCX application mobility platform. The vulnerability is an authenticated SQL injection vulnerability in HCX, it was privately […]

First seen on securityaffairs.com

Jump to article: securityaffairs.com/169904/security/vmware-sql-injection-flaw-cve-2024-38814.html