{"id":5276,"date":"2020-07-10T10:47:55","date_gmt":"2020-07-10T03:47:55","guid":{"rendered":"https:\/\/www.camcert.gov.kh\/?p=5276"},"modified":"2020-07-10T10:56:04","modified_gmt":"2020-07-10T03:56:04","slug":"camsa20-39-vmsa-2020-0016","status":"publish","type":"post","link":"https:\/\/www.camcert.gov.kh\/en\/camsa20-39-vmsa-2020-0016\/","title":{"rendered":"(Khmer) CamSA20-39: \u1785\u17c6\u178e\u17bb\u1785\u1781\u17d2\u179f\u17c4\u1799\u1792\u17d2\u1784\u1793\u17cb\u1792\u17d2\u1784\u179a\u1798\u17b6\u1793\u1793\u17c5\u1780\u17d2\u1793\u17bb\u1784\u1795\u179b\u17b7\u178f\u1795\u179b VMware"},"content":{"rendered":"<p>\u17e1.\u1796\u17d0\u178f\u17cc\u1798\u17b6\u1793\u1791\u17bc\u1791\u17c5<br \/>\n\u1793\u17b6\u1796\u17c1\u179b\u1790\u17d2\u1798\u17b8\u17d7\u1793\u17c1\u17c7\u1780\u17d2\u179a\u17bb\u1798\u17a0\u17ca\u17bb\u1793 VMware \u1794\u17b6\u1793\u1785\u17c1\u1789\u179f\u17c1\u1785\u1780\u17d2\u178f\u17b8\u178e\u17c2\u1793\u17b6\u17c6\u179f\u1793\u17d2\u178f\u17b7\u179f\u17bb\u1781 (VMSA-2020-0016) \u1794\u1793\u17d2\u1791\u17b6\u1793\u17cb\u1798\u17bd\u1799\u17a2\u17c6\u1796\u17b8\u1780\u17b6\u179a\u1791\u1794\u17cb\u179f\u17d2\u1780\u17b6\u178f\u17cb\u1791\u17c5\u179b\u17be\u1797\u17b6\u1796\u1784\u17b6\u1799\u179a\u1784\u1782\u17d2\u179a\u17c4\u17c7 \u178a\u17be\u1798\u17d2\u1794\u17b8\u1794\u17b7\u1791\u1785\u1793\u17d2\u179b\u17c4\u17c7\u1794\u17d2\u179a\u17a0\u17c4\u1784 (\u1785\u17c6\u178e\u17bb\u1785\u1781\u17d2\u179f\u17c4\u1799) \u1785\u17c6\u1793\u17bd\u1793\u1798\u17bd\u1799 (\u17e0\u17e1) \u178a\u17c2\u179b\u1798\u17b6\u1793\u1793\u17c5\u1780\u17d2\u1793\u17bb\u1784\u1780\u1798\u17d2\u1798\u179c\u17b7\u1792\u17b8 VeloCloud Orchestrator \u179f\u1798\u17d2\u179a\u17b6\u1794\u17cb\u1794\u17d2\u179a\u1796\u17d0\u1793\u17d2\u1792\u1794\u17d2\u179a\u178f\u17b7\u1794\u178f\u17d2\u178f\u17b7\u1780\u17b6\u179a Linux\u17d4<br \/>\n\u2022\t\u1785\u17c6\u178e\u17bb\u1785\u1781\u17d2\u179f\u17c4\u1799\u178a\u17c2\u179b\u1798\u17b6\u1793\u179b\u17c1\u1781\u179f\u1798\u17d2\u1782\u17b6\u179b\u17cb CVE-2020-3973 \u1787\u17b6\u1794\u17d2\u179a\u1797\u17c1\u1791 input validation \u178a\u17c2\u179b\u1798\u17b6\u1793\u1780\u1798\u17d2\u179a\u17b7\u178f\u179f\u17bb\u179c\u178f\u17d2\u1790\u17b7\u1797\u17b6\u1796\u1792\u17d2\u1784\u1793\u17cb\u1792\u17d2\u1784\u179a\u1798\u1792\u17d2\u1799\u1798 \u1793\u17b7\u1784\u1791\u1791\u17bd\u179b\u1794\u17b6\u1793\u1796\u17b7\u1793\u17d2\u1791\u17bb CVSSv3  8.5. \u17a2\u17b6\u1785\u17a2\u1793\u17bb\u1789\u17d2\u1789\u17b6\u178f\u17b1\u17d2\u1799\u17a2\u17d2\u1793\u1780\u179c\u17b6\u1799\u1794\u17d2\u179a\u17a0\u17b6\u179a\u17a2\u17b6\u1785\u1792\u17d2\u179c\u17be\u1780\u17b6\u179a \u1794\u1789\u17d2\u1785\u17bc\u179b\u1796\u17d0\u178f\u17cc\u1798\u17b6\u1793\u178a\u17c2\u179b\u1798\u17b7\u1793\u178f\u17d2\u179a\u17b9\u1798\u178f\u17d2\u179a\u17bc\u179c\u178a\u17bc\u1785\u1787\u17b6 SQL-injection\u17d4<\/p>\n<p>\u17e2.\u1795\u179b\u17b7\u178f\u1795\u179b\u1794\u17c9\u17c7\u1796\u17b6\u179b\u17cb\u178a\u17c2\u179b\u179a\u1784\u1795\u179b\u1794\u17c9\u17c7\u1796\u17b6\u179b\u17cb<br \/>\n\u2022\tVeloCloud Orchestrator \u178a\u17c2\u179b\u1798\u17b6\u1793\u1780\u17c6\u178e\u17c2 3.x \u1793\u17b7\u1784\u1780\u17c6\u178e\u17c2\u1798\u17bb\u1793\u1793\u17c1\u17c7<\/p>\n<p>\u17e3.\u1795\u179b\u179c\u17b7\u1794\u17b6\u1780<br \/>\n\u1780\u17b6\u179a\u179c\u17b6\u1799\u1794\u17d2\u179a\u17a0\u17b6\u179a\u178a\u17c4\u1799\u1787\u17c4\u1782\u1787\u17d0\u1799\u179b\u17be\u1785\u17c6\u178e\u17bb\u1785\u1781\u17d2\u179f\u17c4\u1799\u1781\u17b6\u1784\u179b\u17be\u1793\u17c1\u17c7\u17a2\u17b6\u1785\u17a2\u1793\u17bb\u1789\u17d2\u1789\u17b6\u178f\u17b1\u17d2\u1799\u17a2\u17d2\u1793\u1780\u179c\u17b6\u1799\u1794\u17d2\u179a\u17a0\u17b6\u179a\u178a\u17c6\u178e\u17be\u179a\u1780\u17b6\u179a\u1780\u17bc\u178a SQL-injection \u1794\u17b6\u1793 \u17d4<br \/>\n\u17e4.\u17a2\u1793\u17bb\u179f\u17b6\u179f\u1793\u17cf\u178e\u17c2\u1793\u17b6\u17c6<br \/>\n\u1780\u17b6\u179a\u17b7\u1799\u17b6\u179b\u17d0\u1799 CamCERT \u179f\u17bc\u1798\u1795\u17d2\u178f\u179b\u17cb\u17a2\u1793\u17bb\u179f\u17b6\u179f\u1793\u17cd\u17b1\u17d2\u1799\u17a2\u1797\u17b7\u1794\u17b6\u179b\u1782\u17d2\u179a\u1794\u17cb\u1782\u17d2\u179a\u1784\u1794\u17d2\u179a\u1796\u17d0\u1793\u17d2\u1792 \u1793\u17b7\u1784\u17a2\u17d2\u1793\u1780\u1794\u17d2\u179a\u17be\u1794\u17d2\u179a\u17b6\u179f\u17cb\u1791\u17b6\u17c6\u1784\u17a2\u179f\u17cb\u1792\u17d2\u179c\u17be\u1794\u1785\u17d2\u1785\u17bb\u1794\u17d2\u1794\u1793\u17d2\u1793\u1797\u17b6\u1796 \u1787\u17b6\u1794\u1793\u17d2\u1791\u17b6\u1793\u17cb\u178f\u17b6\u1798\u178f\u17c2\u1792\u17d2\u179c\u17be\u1791\u17c5\u1794\u17b6\u1793\u17d4<br \/>\n\u2022\t\u179f\u17bc\u1798\u1792\u17d2\u179c\u17be\u1794\u1785\u17d2\u1785\u17bb\u1794\u17d2\u1794\u1793\u17d2\u1793\u1797\u17b6\u1796\u1791\u17c5\u1780\u17c6\u178e\u17c2 3.4.0<br \/>\n\u17e5.\u179f\u1798\u17d2\u179a\u17b6\u1794\u17cb\u1796\u17d0\u178f\u17cc\u1798\u17b6\u1793\u1794\u1793\u17d2\u1790\u17c2\u1798<br \/>\nhttps:\/\/us-cert.cisa.gov\/ncas\/current-activity\/2020\/07\/08\/vmware-releases-security-update-velocloud<br \/>\nhttps:\/\/www.vmware.com\/security\/advisories\/VMSA-2020-0016.html<br \/>\n<\/p>"},"excerpt":{"rendered":"<p>\u17e1.\u1796\u17d0\u178f\u17cc\u1798\u17b6\u1793\u1791\u17bc\u1791\u17c5 \u1793\u17b6\u1796\u17c1\u179b\u1790\u17d2\u1798\u17b8\u17d7\u1793\u17c1\u17c7\u1780\u17d2\u179a\u17bb\u1798\u17a0\u17ca\u17bb\u1793 VMware \u1794\u17b6\u1793\u1785\u17c1\u1789\u179f\u17c1\u1785\u1780\u17d2\u178f\u17b8\u178e\u17c2\u1793\u17b6\u17c6\u179f\u1793\u17d2\u178f\u17b7\u179f\u17bb\u1781 (VMSA-2020-0016) \u1794\u1793\u17d2\u1791\u17b6\u1793\u17cb\u1798\u17bd\u1799\u17a2\u17c6\u1796\u17b8\u1780\u17b6\u179a\u1791\u1794\u17cb\u179f\u17d2\u1780\u17b6\u178f\u17cb\u1791\u17c5\u179b\u17be\u1797\u17b6\u1796\u1784\u17b6\u1799\u179a\u1784\u1782\u17d2\u179a\u17c4\u17c7 \u178a\u17be\u1798\u17d2\u1794\u17b8\u1794\u17b7\u1791\u1785\u1793\u17d2\u179b\u17c4\u17c7\u1794\u17d2\u179a\u17a0\u17c4\u1784 (\u1785\u17c6\u178e\u17bb\u1785\u1781\u17d2\u179f\u17c4\u1799) \u1785\u17c6\u1793\u17bd\u1793\u1798\u17bd\u1799 (\u17e0\u17e1) \u178a\u17c2\u179b\u1798\u17b6\u1793\u1793\u17c5\u1780\u17d2\u1793\u17bb\u1784\u1780\u1798\u17d2\u1798\u179c\u17b7\u1792\u17b8 VeloCloud Orchestrator \u179f\u1798\u17d2\u179a\u17b6\u1794\u17cb\u1794\u17d2\u179a\u1796\u17d0\u1793\u17d2\u1792\u1794\u17d2\u179a\u178f\u17b7\u1794\u178f\u17d2\u178f\u17b7\u1780\u17b6\u179a Linux\u17d4 \u2022 \u1785\u17c6\u178e\u17bb\u1785\u1781\u17d2\u179f\u17c4\u1799\u178a\u17c2\u179b\u1798\u17b6\u1793\u179b\u17c1\u1781\u179f\u1798\u17d2\u1782\u17b6\u179b\u17cb CVE-2020-3973 \u1787\u17b6\u1794\u17d2\u179a\u1797\u17c1\u1791 input validation \u178a\u17c2\u179b\u1798\u17b6\u1793\u1780\u1798\u17d2\u179a\u17b7\u178f\u179f\u17bb\u179c\u178f\u17d2\u1790\u17b7\u1797\u17b6\u1796\u1792\u17d2\u1784\u1793\u17cb\u1792\u17d2\u1784\u179a\u1798\u1792\u17d2\u1799\u1798 \u1793\u17b7\u1784\u1791\u1791\u17bd\u179b\u1794\u17b6\u1793\u1796\u17b7\u1793\u17d2\u1791\u17bb CVSSv3 8.5. \u17a2\u17b6\u1785\u17a2\u1793\u17bb\u1789\u17d2\u1789\u17b6\u178f\u17b1\u17d2\u1799\u17a2\u17d2\u1793\u1780\u179c\u17b6\u1799\u1794\u17d2\u179a\u17a0\u17b6\u179a\u17a2\u17b6\u1785\u1792\u17d2\u179c\u17be\u1780\u17b6\u179a \u1794\u1789\u17d2\u1785\u17bc\u179b\u1796\u17d0\u178f\u17cc\u1798\u17b6\u1793\u178a\u17c2\u179b\u1798\u17b7\u1793\u178f\u17d2\u179a\u17b9\u1798\u178f\u17d2\u179a\u17bc\u179c\u178a\u17bc\u1785\u1787\u17b6 SQL-injection\u17d4 \u17e2.\u1795\u179b\u17b7\u178f\u1795\u179b\u1794\u17c9\u17c7\u1796\u17b6\u179b\u17cb\u178a\u17c2\u179b\u179a\u1784\u1795\u179b\u1794\u17c9\u17c7\u1796\u17b6\u179b\u17cb \u2022 VeloCloud Orchestrator \u178a\u17c2\u179b\u1798\u17b6\u1793\u1780\u17c6\u178e\u17c2 3.x \u1793\u17b7\u1784\u1780\u17c6\u178e\u17c2\u1798\u17bb\u1793\u1793\u17c1\u17c7 \u17e3.\u1795\u179b\u179c\u17b7\u1794\u17b6\u1780 \u1780\u17b6\u179a\u179c\u17b6\u1799\u1794\u17d2\u179a\u17a0\u17b6\u179a\u178a\u17c4\u1799\u1787\u17c4\u1782\u1787\u17d0\u1799\u179b\u17be\u1785\u17c6\u178e\u17bb\u1785\u1781\u17d2\u179f\u17c4\u1799\u1781\u17b6\u1784\u179b\u17be\u1793\u17c1\u17c7\u17a2\u17b6\u1785\u17a2\u1793\u17bb\u1789\u17d2\u1789\u17b6\u178f\u17b1\u17d2\u1799\u17a2\u17d2\u1793\u1780\u179c\u17b6\u1799\u1794\u17d2\u179a\u17a0\u17b6\u179a\u178a\u17c6\u178e\u17be\u179a\u1780\u17b6\u179a\u1780\u17bc\u178a SQL-injection \u1794\u17b6\u1793 \u17d4 \u17e4.\u17a2\u1793\u17bb\u179f\u17b6\u179f\u1793\u17cf\u178e\u17c2\u1793\u17b6\u17c6 \u1780\u17b6\u179a\u17b7\u1799\u17b6\u179b\u17d0\u1799 CamCERT \u179f\u17bc\u1798\u1795\u17d2\u178f\u179b\u17cb\u17a2\u1793\u17bb\u179f\u17b6\u179f\u1793\u17cd\u17b1\u17d2\u1799\u17a2\u1797\u17b7\u1794\u17b6\u179b\u1782\u17d2\u179a\u1794\u17cb\u1782\u17d2\u179a\u1784\u1794\u17d2\u179a\u1796\u17d0\u1793\u17d2\u1792 \u1793\u17b7\u1784\u17a2\u17d2\u1793\u1780\u1794\u17d2\u179a\u17be\u1794\u17d2\u179a\u17b6\u179f\u17cb\u1791\u17b6\u17c6\u1784\u17a2\u179f\u17cb\u1792\u17d2\u179c\u17be\u1794\u1785\u17d2\u1785\u17bb\u1794\u17d2\u1794\u1793\u17d2\u1793\u1797\u17b6\u1796 \u1787\u17b6\u1794\u1793\u17d2\u1791\u17b6\u1793\u17cb\u178f\u17b6\u1798\u178f\u17c2\u1792\u17d2\u179c\u17be\u1791\u17c5\u1794\u17b6\u1793\u17d4 \u2022 \u179f\u17bc\u1798\u1792\u17d2\u179c\u17be\u1794\u1785\u17d2\u1785\u17bb\u1794\u17d2\u1794\u1793\u17d2\u1793\u1797\u17b6\u1796\u1791\u17c5\u1780\u17c6\u178e\u17c2 3.4.0 \u17e5.\u179f\u1798\u17d2\u179a\u17b6\u1794\u17cb\u1796\u17d0\u178f\u17cc\u1798\u17b6\u1793\u1794\u1793\u17d2\u1790\u17c2\u1798 https:\/\/us-cert.cisa.gov\/ncas\/current-activity\/2020\/07\/08\/vmware-releases-security-update-velocloud https:\/\/www.vmware.com\/security\/advisories\/VMSA-2020-0016.html<\/p>\n","protected":false},"author":3,"featured_media":5277,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[357,9],"tags":[435],"class_list":["post-5276","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-357","category-security-alert","tag-vmware-security-advisories"],"_links":{"self":[{"href":"https:\/\/www.camcert.gov.kh\/en\/wp-json\/wp\/v2\/posts\/5276","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.camcert.gov.kh\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.camcert.gov.kh\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.camcert.gov.kh\/en\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.camcert.gov.kh\/en\/wp-json\/wp\/v2\/comments?post=5276"}],"version-history":[{"count":2,"href":"https:\/\/www.camcert.gov.kh\/en\/wp-json\/wp\/v2\/posts\/5276\/revisions"}],"predecessor-version":[{"id":5283,"href":"https:\/\/www.camcert.gov.kh\/en\/wp-json\/wp\/v2\/posts\/5276\/revisions\/5283"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.camcert.gov.kh\/en\/wp-json\/wp\/v2\/media\/5277"}],"wp:attachment":[{"href":"https:\/\/www.camcert.gov.kh\/en\/wp-json\/wp\/v2\/media?parent=5276"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.camcert.gov.kh\/en\/wp-json\/wp\/v2\/categories?post=5276"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.camcert.gov.kh\/en\/wp-json\/wp\/v2\/tags?post=5276"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}