Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistVmwareCVELIST:CVE-2023-20865
HistoryApr 20, 2023 - 12:00 a.m.

CVE-2023-20865

2023-04-2000:00:00
vmware
www.cve.org
vmware aria operations
command injection
vulnerability
administrative privileges
arbitrary commands
root access

7.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.3%

JSON

VMware Aria Operations for Logs contains a command injection vulnerability. A malicious actor with administrative privileges in VMware Aria Operations for Logs can execute arbitrary commands as root.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "VMware Aria Operations for Logs (formerly vRealize Log Insight)",
    "versions": [
      {
        "version": "VMware Aria Operations for Logs (formerly vRealize Log Insight) prior to 8.12",
        "status": "affected"
      }
    ]
  }
]

Related

cve 1
nvd 1
nessus 1
prion 1
vmware 1
thn 1
cve
cve
CVE-2023-20865
2023-04-20 21:15:08
nvd
nvd
CVE-2023-20865
2023-04-20 21:15:08
nessus
nessus
VMware Aria Operations for Logs 8.6.x / 8.8.x / 8.10 / 8.10.2 Command Injection (VMSA-2023-0007)
2023-04-28 00:00:00
prion
prion
Command injection
2023-04-20 21:15:00
vmware
vmware
VMware Aria Operations for Logs (Operations for Logs) update addresses multiple vulnerabilities. (CVE-2023-20864, CVE-2023-20865)
2023-04-20 00:00:00
thn
thn
Cisco and VMware Release Security Updates to Patch Critical Flaws in their Products
2023-04-21 05:41:00

7.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.3%

JSON
Related for CVELIST:CVE-2023-20865
cve1nvd1nessus1prion1vmware1thn1