CVE-2023-20889

Summary

CVE	CVE-2023-20889
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-06-07 15:15:00 UTC
Updated	2023-06-14 19:35:00 UTC
Description	Aria Operations for Networks contains an information disclosure vulnerability. A malicious actor with network access to VMware Aria Operations for Networks may be able to perform a command injection attack resulting in information disclosure.

Risk And Classification

Problem Types: CWE-77

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Vmware	Vrealize Network Insight	All	All	All	All

References

Reference	Source	Link	Tags
VMSA-2023-0012	MISC	www.vmware.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

378558 VMware Aria Operations for Networks Multiple Security Vulnerabilities (VMSA-2023-0012)
730825 VMware Aria Operations for Networks Multiple Security Vulnerabilities (VMSA-2023-0012.1)