Detections
Analytics

VMware Aria Operations for Logs < 8.18.3 Multiple Vulnerabilities (VMSA-2025-0003)

high Nessus Plugin ID 215005

Synopsis

VMware Aria Operations for Logs running on the remote host is affected by multiple vulnerabilities.

Description

The version of VMware Aria Operations for Logs (formerly VMware vRealize Log Insight) running on the remote host is affected by multiple vulnerabilities, including the following:

 - VMware Aria Operations for Logs contains an information disclosure vulnerability. A malicious actor with View Only Admin permissions may be able to read the credentials of a VMware product integrated with VMware Aria Operations for Logs. (CVE-2025-22218)

 - VMware Aria Operations for Logs contains a stored cross-site scripting vulnerability. A malicious actor with non-administrative privileges may be able to inject a malicious script that (can perform stored cross-site scripting) may lead to arbitrary operations as admin user. (CVE-2025-22219)

 - VMware Aria Operation for Logs contains a stored cross-site scripting vulnerability. A malicious actor with admin privileges to VMware Aria Operations for Logs may be able to inject a malicious script that could be executed in a victim's browser when performing a delete action in the Agent Configuration.
 (CVE-2025-22221)


Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Upgrade to VMware Aria Operations version 8.18.3 or later.

See Also

http://www.nessus.org/u?69bcb33e

Plugin Details

Severity: High

ID: 215005

File Name: vmware_aria_operations_for_logs_VMSA-2025-0003.nasl

Version: 1.1

Type: combined

Agent: unix

Family: CGI abuses

Published: 2/5/2025

Updated: 2/5/2025

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: High

Score: 8.4

CVSS v2

Risk Factor: High

Base Score: 7.1

Vector: CVSS2#AV:N/AC:H/Au:S/C:C/I:C/A:C

CVSS Score Source: CVE-2025-22218

CVSS v3

Risk Factor: High

Base Score: 8.5

Vector: CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Vulnerability Information

CPE: cpe:/a:vmware:vrealize_log_insight, x-cpe:/a:vmware:aria_operations_for_logs

Required KB Items: installed_sw/VMware vRealize Log Insight

Patch Publication Date: 1/30/2025

Vulnerability Publication Date: 1/30/2025

Reference Information

CVE: CVE-2025-22218, CVE-2025-22219, CVE-2025-22220, CVE-2025-22221

VMSA: 2025-0003