CVE-2022-31710

Description

vRealize Log Insight contains a deserialization vulnerability. An unauthenticated malicious actor can remotely trigger the deserialization of untrusted data which could result in a denial of service.

References

https://www.tenable.com/blog/cve-2023-20864-vmware-aria-operations-for-logs-deserialization-vulnerability

https://www.vmware.com/security/advisories/VMSA-2023-0001.html

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3