Lucene search
VmwareCVELIST:CVE-2023-20864HistoryApr 20, 2023 - 12:00 a.m.
CVE-2023-20864
2023-04-2000:00:00
vmware
www.cve.org
1
vmware aria operations
deserialization
vulnerability
arbitrary code
root access
VMware Aria Operations for Logs contains a deserialization vulnerability. An unauthenticated, malicious actor with network access to VMware Aria Operations for Logs may be able to execute arbitrary code as root.
CNA Affected
[
{
"vendor": "n/a",
"product": "VMware Aria Operations for Logs (formerly vRealize Log Insight)",
"versions": [
{
"version": "VMware Aria Operations for Logs (formerly vRealize Log Insight) 8.10.2",
"status": "affected"
}
]
}
]Related
nuclei
nuclei
VMware Aria Operations for Logs - Unauthenticated Remote Code Execution
2023-04-25 15:24:16
hivepro
hivepro
Exploit found in the wild for Critical VMware Aria Operations Bug
2023-07-13 06:59:50
nessus
nessus
VMware Aria Operations for Logs 8.10.2 RCE (VMSA-2023-0007)
2023-04-28 00:00:00
zdi
zdi
nvd
nvd
CVE-2023-20864
2023-04-20 21:15:08
cve
cve
CVE-2023-20864
2023-04-20 21:15:08
prion
prion
Deserialization of untrusted data
2023-04-20 21:15:00
vmware
vmware
thn
thn
VMware Releases Critical Patches for Workstation and Fusion Software
2023-04-26 07:05:00