CVE-2015-2342 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2015-2342 Interim 1 3 2021-06-09T09:34:59Z current 2021-05-30T13:28:26Z 2021-06-09T09:34:59Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2015-2342 The JMX RMI service in VMware vCenter Server 5.0 before u3e, 5.1 before u3b, 5.5 before u3, and 6.0 before u1 does not restrict registration of MBeans, which allows remote attackers to execute arbitrary code via the RMI protocol. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings The JMX RMI service in VMware vCenter Server 5.0 before u3e, 5.1 before u3b, 5.5 before u3, and 6.0 before u1 does not restrict registration of MBeans, which allows remote attackers to execute arbitrary code via the RMI protocol. CVE-2015-2342 critical 10 AV:N/AC:L/Au:N/C:C/I:C/A:C