VMware Aria Operations 8.16.0

CPE Details

VMware Aria Operations 8.16.0
vmware
aria_operations
8.16.0
2025-04-17
14h57 +00:00
2025-04-17
14h57 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:vmware:aria_operations:8.16.0:*:*:*:*:*:*:*

Informations

Vendor

vmware

Product

aria_operations

Version

8.16.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2025-22222 2025-01-30 15h32 +00:00 VMware Aria Operations contains an information disclosure vulnerability. A malicious user with non-administrative privileges may exploit this vulnerability to retrieve credentials for an outbound plugin if a valid service credential ID is known.
7.7
High
CVE-2024-38834 2024-11-26 11h56 +00:00 VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with editing access to cloud provider might be able to inject malicious script leading to stored cross-site scripting in the product VMware Aria Operations.
6.5
Medium
CVE-2024-38833 2024-11-26 11h54 +00:00 VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with editing access to email templates might inject malicious script leading to stored cross-site scripting in the product VMware Aria Operations.
6.8
Medium
CVE-2024-38832 2024-11-26 11h51 +00:00 VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with editing access to views may be able to inject malicious script leading to stored cross-site scripting in the product VMware Aria Operations.
7.1
High
CVE-2024-38831 2024-11-26 11h50 +00:00 VMware Aria Operations contains a local privilege escalation vulnerability.  A malicious actor with local administrative privileges can insert malicious commands into the properties file to escalate privileges to  a root user on the appliance running VMware Aria Operations.
7.8
High
CVE-2024-38830 2024-11-26 11h49 +00:00 VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with local administrative privileges may trigger this vulnerability to escalate privileges to root user on the appliance running VMware Aria Operations.
7.8
High
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.