CVE-2023-34051
Description
VMware Aria Operations for Logs contains an authentication bypass vulnerability. An unauthenticated, malicious actor can inject files into the operating system of an impacted appliance which can result in remote code execution.
NVD
Severity: CRITICAL
CVE ID: CVE-2023-34051
CVSS Score: 9.8
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Proof Of Concept
horizon3ai
VMware Aria Operations for Logs CVE-2023-34051
Refrence: GitHub