CVE-2023-20864

CVSS V2 None CVSS V3 None

Description

VMware Aria Operations for Logs contains a deserialization vulnerability. An unauthenticated, malicious actor with network access to VMware Aria Operations for Logs may be able to execute arbitrary code as root.

Overview

CVE ID
CVE-2023-20864

Assigner
security@vmware.com

Vulnerability Status
Undergoing Analysis

Published Version
2023-04-20T21:15:08

Last Modified Date
2023-04-21T01:45:50

References

Reference URL	Reference Tags
https://www.vmware.com/security/advisories/VMSA-2023-0007.html

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-20864
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20864

History

Created	Old Value	New Value	Data Type	Notes
2023-04-20 22:00:52				Added to TrackCVE
2023-04-21 02:01:16		2023-04-21T01:45:50	CVE Modified Date	updated
2023-04-21 02:01:16	Received	Awaiting Analysis	Vulnerability Status	updated
2023-04-26 13:01:08	Awaiting Analysis	Undergoing Analysis	Vulnerability Status	updated