VMware Aria Operations for Networks Remote Code Execution (CVE-2023-20887)

Summary

Acunetix 360 identified the VMware Aria Operations for Networks Remote Code Execution (CVE-2023-20887) in the target web server.

This vulnerability allows unauthenticated attackers to execute arbitrary commands on the underlying operating system as the root user.

In order to patch this vulnerability, please upgrade to the latest version of VMware Aria Operations for Networks.

Critical

PCI v3.2-6.5.1 CAPEC-242 CWE-94 HIPAA-164.206(a) 164.308(a) ISO27001-A.14.2.5 OWASP 2013-A1 OWASP 2017-A1