CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vmware: >> Aria Automation Security Vulnerabilities

CVE-2024-22280

VMware Aria Automation does not apply correct input validation which allows for SQL-injection in the product. An authenticated malicious user could enter specially crafted SQL queries and perform unauthorised read/write operations in the database.

CVSS Score

8.5

EPSS Score

0.009

Published

2024-07-11

CVE-2023-34063

Aria Automation contains a Missing Access Control vulnerability. An authenticated malicious actor may exploit this vulnerability leading to unauthorized access to remote organizations and workflows.

CVSS Score

9.9

EPSS Score

0.002

Published

2024-01-16

Page 1

Vulnerabilities

Vulnerable Software

Vmware: >> Aria Automation Security Vulnerabilities

Products

Pricing

Contact Us