VMWare Aria Operations for Networks Multiple Vulnerabilities

Last Update Date: 21 Jun 2023 Release Date: 9 Jun 2023 5909 Views

RISK: Extremely High Risk

Extremely High Risk

TYPE: Operating Systems - VM Ware

TYPE: VM Ware

Multiple vulnerabilities were identified in VMWare Aria Operations for Networks. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution and sensitive information disclosure on the targeted system.

 

Note:

CVE-2023-20887 is being exploited in the wild. Unauthenticated threat actors can exploit this command injection flaw in low-complexity attacks that don't require user interaction.

 

[Updated on 2023-06-21] 

Updated Risk Level.

Impact

  • Remote Code Execution
  • Information Disclosure

System / Technologies affected

  • VMware Aria Operations for Networks 6.x (Formerly vRealize Network Insight)

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

 

Vulnerability Identifier

Source

Related Link

Related Tags

VMwarevRealizeAriaRemote Code ExecutionInformation DisclosureExploit In The Wild

Share with

Previous

ASUS Router Multiple Vulnerabilities

20 Jun 2023 5952 Views

Next

Node.js Multiple Vulnerabilities

21 Jun 2023 5312 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY