N/A

VMware Carbon Black App Control (8.5.x prior to 8.5.14, 8.6.x prior to 8.6.6, 8.7.x prior to 8.7.4 and 8.8.x prior to 8.8.2) contains a file upload vulnerability. A malicious actor with administrative access to the VMware App Control administration interface may be able to execute code on the Windows instance where AppC Server is installed by uploading a specially crafted file.

N/A

N/A

VMware Carbon Black App Control 代码问题漏洞

VMware Carbon Black App Control是美国VMware公司的一款应用控制产品。用于锁定服务器和关键系统，防止不必要的更改。 VMware Carbon Black App Control 存在代码问题漏洞，对 VMware App Control 管理界面具有管理访问权限的攻击者可能能够通过上传特制文件在安装了 AppC 服务器的 Windows 实例上执行代码。以下产品和版本受到影响：8.5.14 之前的 8.5.x、8.6.6 之前的 8.6.x、8.7.4 之前的 8.7.

N/A

N/A