Detections
Analytics
VMware Aria Operations for Logs 8.6.x / 8.8.x / 8.10 / 8.10.2 / 8.12 Authentication Bypass (VMSA-2023-0021)
critical Nessus Plugin ID 183915
Language:
Synopsis
VMware Aria Operations running on the remote host is affected by an authentication bypass vulnerability.Description
The version of VMware Aria Operations for Logs (formerly VMware vRealize Log Insight) running on the remote host is 8.6.x, 8.8.x, 8.10, 8.10.2 or 8.12. It is, therefore, affected by an authentication bypass vulnerability. An unauthenticated, remote attacker can inject files into the operating system of an impacted appliance which can result in remote code execution.Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Upgrade to VMware Aria Operations for Logs version 8.14 or later.See Also
https://www.vmware.com/security/advisories/VMSA-2023-0021.html
Plugin Details
Severity: Critical
ID: 183915
File Name: vmware_aria_operations_for_logs_VMSA-2023-0021_cve-2023-34051.nasl
Version: 1.3
Type: combined
Family: CGI abuses
Published: 10/26/2023
Updated: 10/31/2023
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.7
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 7.8
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2023-34051
CVSS v3
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 8.8
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:vmware:vrealize_log_insight, x-cpe:/a:vmware:aria_operations_for_logs
Required KB Items: installed_sw/VMware vRealize Log Insight
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 10/19/2023
Vulnerability Publication Date: 10/19/2023
Reference Information
CVE: CVE-2023-34051
IAVA: 2023-A-0575
VMSA: 2023-0021