U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2023-20896

Change History

Initial Analysis by NIST 6/30/2023 8:34:22 AM

Action Type Old Value New Value
Added CVSS V3.1

								
							
							
						
NIST AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Added CWE

								
							
							
						
NIST CWE-125
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:vmware:vcenter_server:*:*:*:*:*:*:*:* versions from (including) 4.0 up to (excluding) 7.0
     *cpe:2.3:a:vmware:vcenter_server:7.0:-:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:a:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:b:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:c:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:d:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update1:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update1a:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update1c:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update1d:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update2:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update2a:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update2b:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update2c:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update2d:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update3:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update3a:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update3c:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update3d:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update3e:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update3f:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update3g:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update3h:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update3i:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update3j:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update3k:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:7.0:update3l:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:8.0:-:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:8.0:a:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:8.0:b:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:8.0:c:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:8.0:update1:*:*:*:*:*:*
     *cpe:2.3:a:vmware:vcenter_server:8.0:update1a:*:*:*:*:*:*
Changed Reference Type
https://www.vmware.com/security/advisories/VMSA-2023-0014.html No Types Assigned
https://www.vmware.com/security/advisories/VMSA-2023-0014.html Patch, Vendor Advisory