Lucene search
VMwareVMSA-2023-0002HistoryJan 31, 2023 - 12:00 a.m.
VMware vRealize Operations (vROps) update addresses a CSRF bypass vulnerability (CVE-2023-20856)
2023-01-3100:00:00
www.vmware.com
42
vmware
vrealize operations
csrf
vulnerability
update
cve-2023-20856
software
3. VMware vRealize Operations (vROps) CSRF bypass vulnerability (CVE-2023-20856)
vRealize Operations (vROps) contains a CSRF bypass vulnerability. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 6.5.
| CPE | Name | Operator | Version |
|---|---|---|---|
| vmware vrealize operations (vrops) | eq | 8.6.x |
References
customerconnect.vmware.com/en/downloads/info/slug/infrastructure_operations_management/vmware_vrealize_operations/8_6
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20856
docs.vmware.com/en/vRealize-Operations/8.6.4/rn/vrealize-operations-864-release-notes/index.html
kb.vmware.com/s/article/90672
www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Related
nvd
nvd
CVE-2023-20856
2023-02-01 03:15:08
prion
prion
Design/Logic Flaw
2023-02-01 03:15:00
nessus
nessus
VMware vRealize Operations 8.6.x < 8.6.4 CSRF (VMSA-2023-0002)
2023-02-03 00:00:00
cve
cve
CVE-2023-20856
2023-02-01 03:15:08
cvelist
cvelist
CVE-2023-20856
2023-02-01 00:00:00