3. VMware vRealize Operations (vROps) CSRF bypass vulnerability (CVE-2023-20856)
vRealize Operations (vROps) contains a CSRF bypass vulnerability. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 6.5.
CPE | Name | Operator | Version |
---|---|---|---|
vmware vrealize operations (vrops) | eq | 8.6.x |
customerconnect.vmware.com/en/downloads/info/slug/infrastructure_operations_management/vmware_vrealize_operations/8_6
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20856
docs.vmware.com/en/vRealize-Operations/8.6.4/rn/vrealize-operations-864-release-notes/index.html
kb.vmware.com/s/article/90672
www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N