Published: 20/10/2023 Updated: 30/10/2023

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 0

VMware Aria Operations for Logs contains an authentication bypass vulnerability. An unauthenticated, malicious actor can inject files into the operating system of an impacted appliance which can result in remote code execution.

Vulnerable Product	Search on Vulmon	Subscribe to Product
vmware aria operations for logs 8.8
vmware aria operations for logs 8.6
vmware aria operations for logs 5.0
vmware aria operations for logs 4.0
vmware aria operations for logs 8.10
vmware aria operations for logs 8.10.2
vmware aria operations for logs 8.12

VMware Aria Operations for Logs CVE-2023-34051

CVE-2023-34051 CVE-2023-34051 is an authentication bypass that bypasses the patch for VMSA-2023-0001 VMSA-2023-0001 for vRealize Log Insight includes the following CVEs: VMware vRealize Log Insight Directory Traversal Vulnerability (CVE-2022-31706) VMware vRealize Log Insight broken access control Vulnerability (CVE-2022-31704) VMware vRealize Log Insight contains an Informat

CWE-863 https://www.vmware.com/security/advisories/VMSA-2023-0021.html https://nvd.nist.gov https://github.com/horizon3ai/CVE-2023-34051

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-34051

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect