6 matches found
VMWare Aria Operations for Networks Multiple Vulnerabilities (VMSA-2023-0012)
According to its self-reported version, the instance of VMWare Aria Operations for Networks running on the remote web server is 6.x 6.2.0.1684162127, 6.3.x 6.3.0.1684163738, 6.4.x 6.4.0.1684166601, 6.5.x 6.5.1.1684151627, 6.6.x 6.6.0.1684154516, 6.7.x 6.7.0.1684151941, 6.8.x 6.8.0.1684995353, 6.9...
Urgent Security Updates: Cisco and VMware Address Critical Vulnerabilities
VMware has released security updates to fix a trio of flaws in Aria Operations for Networks that could result in information disclosure and remote code execution. The most critical of the three vulnerabilities is a command injection vulnerability tracked as CVE-2023-20887 CVSS score: 9.8 that cou...
CVE-2023-20889
Aria Operations for Networks contains an information disclosure vulnerability. A malicious actor with network access to VMware Aria Operations for Networks may be able to perform a command injection attack resulting in information disclosure...
CVE-2023-20889
Aria Operations for Networks contains an information disclosure vulnerability. A malicious actor with network access to VMware Aria Operations for Networks may be able to perform a command injection attack resulting in information disclosure...
CVE-2023-20889
VMware Aria Operations for Networks (formerly vRealize Network Insight) is affected by CVE-2023-20889, a network-exposed information-disclosure vulnerability caused by an information-disclosing command-injection flaw in the application layer. The issue can be exploited by a remote attacker with n...
VMware Aria Operations for Networks updates address multiple vulnerabilities. (CVE-2023-20887, CVE-2023-20888, CVE-2023-20889)
3a. Aria Operations for Networks Command Injection Vulnerability CVE-2023-20887 Aria Operations for Networks contains a command injection vulnerability. VMware has evaluated the severity of this issue to be in the critical severity range with a maximum CVSSv3 base score of 9.8. 3b. Aria Operation...