VMware Aria Operations for Logs contains a deserialization vulnerability. A malicious actor with non-administrative access to the local system can trigger the deserialization of data which could result in authentication bypass.
CPE | Name | Operator | Version |
---|---|---|---|
aria_operations_for_logs | eq | 5.0 | |
aria_operations_for_logs | eq | 4.0 | |
aria_operations_for_logs | eq | 8.10.2 | |
aria_operations_for_logs | eq | 8.12 |