Vulnerability Details CVE-2023-20889
Aria Operations for Networks contains an information disclosure vulnerability. A malicious actor with network access to VMware Aria Operations for Networks may be able to perform a command injection attack resulting in information disclosure.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.894
EPSS Ranking 99.5%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2023-20889
-
cpe:2.3:a:vmware:vrealize_network_insight:6.2.0
-
cpe:2.3:a:vmware:vrealize_network_insight:6.3.0
-
cpe:2.3:a:vmware:vrealize_network_insight:6.4.0
-
cpe:2.3:a:vmware:vrealize_network_insight:6.5.1
-
cpe:2.3:a:vmware:vrealize_network_insight:6.6.0
-
cpe:2.3:a:vmware:vrealize_network_insight:6.7.0