CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-34052

VMware Aria Operations for Logs contains a deserialization vulnerability. A malicious actor with non-administrative access to the local system can trigger the deserialization of data which could result in authentication bypass.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 5.7%

CVSS Severity

CVSS v3 Score 7.8

References

https://www.vmware.com/security/advisories/VMSA-2023-0021.html
https://www.vmware.com/security/advisories/VMSA-2023-0021.html

Products affected by CVE-2023-34052

Vmware » Aria Operations For Logs » Version: 4.0

cpe:2.3:a:vmware:aria_operations_for_logs:4.0
Vmware » Aria Operations For Logs » Version: 5.0

cpe:2.3:a:vmware:aria_operations_for_logs:5.0
Vmware » Aria Operations For Logs » Version: 8.10.2

cpe:2.3:a:vmware:aria_operations_for_logs:8.10.2
Vmware » Aria Operations For Logs » Version: 8.12

cpe:2.3:a:vmware:aria_operations_for_logs:8.12

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-34052

Products

Pricing

Contact Us