Detections
Analytics
VMware Aria Operations for Logs 8.10.2 / 8.12 Deserialization (VMSA-2023-0021)
high Nessus Plugin ID 183916
Language:
Synopsis
VMware Aria Operations running on the remote host is affected by a deserialization vulnerability.Description
The version of VMware Aria Operations for Logs (formerly VMware vRealize Log Insight) running on the remote host is 8.10.2 or 8.12. It is, therefore, affected by a deserialization vulnerability. An unauthenticated, remote attacker with non-administrative access to the local system can trigger the deserialization of data which could result in authentication bypass.Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Upgrade to VMware Aria Operations version 8.14 or later.See Also
https://www.vmware.com/security/advisories/VMSA-2023-0021.html
Plugin Details
Severity: High
ID: 183916
File Name: vmware_aria_operations_for_logs_VMSA-2023-0021_cve-2023-34052.nasl
Version: 1.3
Type: combined
Family: CGI abuses
Published: 10/26/2023
Updated: 10/31/2023
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Medium
Base Score: 6.8
Temporal Score: 5
Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C
CVSS Score Source: CVE-2023-34052
CVSS v3
Risk Factor: High
Base Score: 7.8
Temporal Score: 6.8
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:vmware:vrealize_log_insight, x-cpe:/a:vmware:aria_operations_for_logs
Required KB Items: installed_sw/VMware vRealize Log Insight
Exploit Ease: No known exploits are available
Patch Publication Date: 10/19/2023
Vulnerability Publication Date: 10/19/2023
Reference Information
CVE: CVE-2023-34052
IAVA: 2023-A-0575
VMSA: 2023-0021