Lucene search

Aria Operations For Networks Security Vulnerabilities

cve

CVE-2024-22241

Aria Operations for Networks contains a cross site scripting vulnerability. A malicious actor with admin privileges can inject a malicious payload into the login banner and takeover the user...

4.8CVSS

6.7AI Score

0.0004EPSS

2024-02-06 08:16 PM

cve

CVE-2024-22238

Aria Operations for Networks contains a cross site scripting vulnerability. A malicious actor with admin privileges may be able to inject malicious code into user profile configurations due to improper input...

4.8CVSS

6.8AI Score

0.0004EPSS

2024-02-06 08:16 PM

cve

CVE-2024-22239

Aria Operations for Networks contains a local privilege escalation vulnerability. A console user with access to Aria Operations for Networks may exploit this vulnerability to escalate privileges to gain regular shell...

7.8CVSS

8AI Score

0.0004EPSS

2024-02-06 08:16 PM

cve

CVE-2024-22240

Aria Operations for Networks contains a local file read vulnerability. A malicious actor with admin privileges may exploit this vulnerability leading to unauthorized access to sensitive...

4.9CVSS

7AI Score

0.0005EPSS

2024-02-06 08:16 PM

cve

CVE-2024-22237

7.8CVSS

8AI Score

0.0004EPSS

2024-02-06 08:16 PM

cve

CVE-2023-20890

Aria Operations for Networks contains an arbitrary file write vulnerability. An authenticated malicious actor with administrative access to VMware Aria Operations for Networks can write files to arbitrary locations resulting in remote code...

7.2CVSS

8.7AI Score

0.001EPSS

2023-08-29 06:15 PM

cve

CVE-2023-34039

Aria Operations for Networks contains an Authentication Bypass vulnerability due to a lack of unique cryptographic key generation. A malicious actor with network access to Aria Operations for Networks could bypass SSH authentication to gain access to the Aria Operations for Networks...

9.8CVSS

9.7AI Score

0.935EPSS

2023-08-29 06:15 PM

122