CVE-2023-34051
Summary
| CVE | CVE-2023-34051 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2023-10-20 05:15:00 UTC |
| Updated | 2023-10-30 15:28:00 UTC |
| Description | VMware Aria Operations for Logs contains an authentication bypass vulnerability. An unauthenticated, malicious actor can inject files into the operating system of an impacted appliance which can result in remote code execution. |
Risk And Classification
Problem Types: CWE-863
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Vmware | Aria Operations For Logs | 4.0 | All | All | All |
| Application | Vmware | Aria Operations For Logs | 5.0 | All | All | All |
| Application | Vmware | Aria Operations For Logs | 8.10 | All | All | All |
| Application | Vmware | Aria Operations For Logs | 8.10.2 | All | All | All |
| Application | Vmware | Aria Operations For Logs | 8.12 | All | All | All |
| Application | Vmware | Aria Operations For Logs | 8.6 | All | All | All |
| Application | Vmware | Aria Operations For Logs | 8.8 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Page Not Found | MISC | www.vmware.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 378956 VMware Aria Operations for Logs Multiple Security Vulnerabilities (VMSA-2023-0021)