What is CVE-2015-2342?

CVE-2015-2342 is a vulnerability in Vmware Vcenter_server. Published 2015-10-12.

Is CVE-2015-2342 known to be exploited?

5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Vmware Vcenter_server

CVE-2015-2342

The JMX RMI service in VMware vCenter Server 5.0 before u3e, 5.1 before u3b, 5.5 before u3, and 6.0 before u1 does not restrict registration of MBeans, which allows remote attackers to execute arbitrary code via the RMI protocol.

EPSS: 0.920 (99.7th percentile) — read the EPSS interpretation.

Affected products

Vmware Vcenter_server — versions 5.0, 5.1, 5.5
N/a — versions n/a

Public proof-of-concept exploits

References

20151001 CVE-2015-2342 VMware vCenter Remote Code Execution (mailing-list, x_refsource_FULLDISC)
1033720 (vdb-entry, x_refsource_SECTRACK)
cve@mitre.org (x_refsource_MISC)
76930 (vdb-entry, x_refsource_BID)
cve@mitre.org (x_refsource_MISC)
cve@mitre.org (x_refsource_CONFIRM, Patch, Vendor Advisory)

Frequently asked questions

What is CVE-2015-2342?: CVE-2015-2342 is a vulnerability in Vmware Vcenter_server. Published 2015-10-12.
Is CVE-2015-2342 known to be exploited?: 5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.