Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistVmwareCVELIST:CVE-2023-20878
HistoryMay 12, 2023 - 12:00 a.m.

CVE-2023-20878

2023-05-1200:00:00
vmware
www.cve.org
9
vmware
aria operations
deserialization vulnerability
administrative privileges
arbitrary commands
system disruption

AI Score

7.6

Confidence

High

EPSS

0.001

Percentile

28.0%

JSON

VMware Aria Operations contains a deserialization vulnerability. A malicious actor with administrative privileges can execute arbitrary commands and disrupt the system.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "VMware Aria Operations (formerly vRealize Operations)",
    "versions": [
      {
        "version": "VMware Aria Operations prior to 8.12",
        "status": "affected"
      }
    ]
  }
]

Related

prion 1
nvd 1
cve 1
vmware 1
nessus 1
prion
prion
Deserialization of untrusted data
2023-05-12 21:15:00
nvd
nvd
CVE-2023-20878
2023-05-12 21:15:09
cve
cve
CVE-2023-20878
2023-05-12 21:15:09
vmware
vmware
VMware Aria Operations update addresses multiple Local Privilege Escalations and a Deserialization issue (CVE-2023-20877, CVE-2023-20878, CVE-2023-20879, CVE-2023-20880)
2023-05-11 00:00:00
nessus
nessus
VMware vRealize Operations Multiple Vulnerabilities (VMSA-2023-0009)
2023-05-18 00:00:00

AI Score

7.6

Confidence

High

EPSS

0.001

Percentile

28.0%

JSON
Related for CVELIST:CVE-2023-20878
prion1nvd1cve1vmware1nessus1