Description:
VMware has published a security advisory to address multiple vulnerabilities in VMware Aria Operations. The details of security updates can be found at:
https://www.vmware.com/security/advisories/VMSA-2023-0009.html
Affected Systems:
- VMware Aria Operations (formerly vRealize Operations)
Impact:
Depending on the vulnerabilities being exploited, a successful exploitation of the vulnerabilities could lead to arbitrary code execution, arbitrary command injection, denial of service or privilege escalation on the affected system.
Recommendation:
Patches for affected products are available. System administrators of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.
More Information:
- https://www.vmware.com/security/advisories/VMSA-2023-0009.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20877 (to CVE-2023-20880)
