Aria Operations for Networks updates include fixes for three critical vulnerabilities.
The most critical of the three vulnerabilities is a command-injection vulnerability with a CVE-2023-20887 score of 9.8 that could allow a malicious actor with network access to achieve remote code execution.
A second vulnerability in the same product,CVE-202092, allows an attacker to execute commands and modify system configuration parameters.
VMware also patches another deserialization vulnerability rated 9.1 out of a maximum of 10 on the CVSS scoring system.
UPCOMING WEBINAR Mastering API Security: Understanding Your True Attack Surface Discover the Untapped Vulnerabilities in your API ecosystem and take proactive steps towards ironclad security.
Join the Session
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply