Vulnerability Details CVE-2023-34063
Aria Automation contains a Missing Access Control vulnerability.
An authenticated malicious actor may
exploit this vulnerability leading to unauthorized access to remote
organizations and workflows.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 36.7%
CVSS Severity
CVSS v3 Score 9.9
References
Products affected by CVE-2023-34063
-
cpe:2.3:a:vmware:aria_automation:8.11.0
-
cpe:2.3:a:vmware:aria_automation:8.11.1
-
cpe:2.3:a:vmware:aria_automation:8.11.2
-
cpe:2.3:a:vmware:aria_automation:8.12.0
-
cpe:2.3:a:vmware:aria_automation:8.12.1
-
cpe:2.3:a:vmware:aria_automation:8.12.2
-
cpe:2.3:a:vmware:aria_automation:8.13.0
-
cpe:2.3:a:vmware:aria_automation:8.13.1
-
cpe:2.3:a:vmware:aria_automation:8.14.0
-
cpe:2.3:a:vmware:aria_automation:8.14.1
-
cpe:2.3:a:vmware:cloud_foundation:4.0
-
cpe:2.3:a:vmware:cloud_foundation:5.0