CVE-2024-38814 – VMware HCX Vulnerability

Severity

High

Analysis Summary

CVE-2024-38814

VMware HCX is vulnerable to SQL injection. A remote authenticated attacker could send specially crafted SQL statements, which could allow the attacker to perform unauthorized remote code execution on the HCX manager.

Impact

Data Manipulation

Indicators of Compromise

CVE

CVE-2024-38814

Affected Vendors

VMWare

Affected Products

VMware HCX 4.8.0
VMware HCX 4.9.0
VMware HCX 4.10.0

Remediation

Refer to VMware Security Advisory for patch, upgrade or suggested workaround information.

VMware Security Advisory

PatchWork APT Threat Actor Group – Active IOCs

Quasar RAT aka CinaRAT – Active IOCs

CVE-2024-38814 – VMware HCX Vulnerability

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan