Lucene search
HiveForce LabsHIVEPRO:C8C7EE0F6FCC7CF7BE4744026B489968HistoryOct 26, 2023 - 8:37 a.m.
Attackers Exploit VMware’s Aria Operations for Logs Vulnerability
2023-10-2608:37:17
HiveForce Labs
www.hivepro.com
17
vmware
aria operations
logs
vulnerability
remote code execution
security patch
authentication bypass
compromised networks
thrift ports
ip address spoofing
hiveforce labs
linkedin
0.002 Low
EPSS
Percentile
54.1%
Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary A critical authentication bypass vulnerability (CVE-2023-34051) in VMware Aria Operations for Logs allows remote code execution with root privileges under certain conditions, raising concerns for compromised networks. The security patch attempted to address the issue by blocking Thrift ports but left other vulnerabilities unpatched, which attackers can bypass by spoofing their IP address. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.
Related
nvd
nvd
CVE-2023-34051
2023-10-20 05:15:07
cvelist
cvelist
CVE-2023-34051
2023-10-20 04:11:52
nessus
nessus
prion
prion
Authentication flaw
2023-10-20 05:15:00
cve
cve
CVE-2023-34051
2023-10-20 05:15:07
githubexploit
githubexploit
Exploit for Incorrect Authorization in Vmware Aria Operations For Logs
2023-10-20 14:59:45
vmware
vmware
thn
thn
Alert: PoC Exploits Released for Citrix and VMware Vulnerabilities
2023-10-25 04:47:00
avleonov
avleonov