VMware Aria Operations 8.12.0 Hotfix 1

CPE Details

VMware Aria Operations 8.12.0 Hotfix 1
vmware
aria_operations
8.12.0
2023-10-04
21h12 +00:00
2023-10-04
21h12 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:vmware:aria_operations:8.12.0:hotfix1:*:*:*:*:*:*

Informations

Vendor

vmware

Product

aria_operations

Version

8.12.0

Update

hotfix1

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2025-22222 2025-01-30 15h32 +00:00 VMware Aria Operations contains an information disclosure vulnerability. A malicious user with non-administrative privileges may exploit this vulnerability to retrieve credentials for an outbound plugin if a valid service credential ID is known.
7.7
Haute
CVE-2024-38834 2024-11-26 11h56 +00:00 VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with editing access to cloud provider might be able to inject malicious script leading to stored cross-site scripting in the product VMware Aria Operations.
6.5
Moyen
CVE-2024-38833 2024-11-26 11h54 +00:00 VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with editing access to email templates might inject malicious script leading to stored cross-site scripting in the product VMware Aria Operations.
6.8
Moyen
CVE-2024-38832 2024-11-26 11h51 +00:00 VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with editing access to views may be able to inject malicious script leading to stored cross-site scripting in the product VMware Aria Operations.
7.1
Haute
CVE-2024-38831 2024-11-26 11h50 +00:00 VMware Aria Operations contains a local privilege escalation vulnerability.  A malicious actor with local administrative privileges can insert malicious commands into the properties file to escalate privileges to  a root user on the appliance running VMware Aria Operations.
7.8
Haute
CVE-2024-38830 2024-11-26 11h49 +00:00 VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with local administrative privileges may trigger this vulnerability to escalate privileges to root user on the appliance running VMware Aria Operations.
7.8
Haute
CVE-2024-22235 2024-02-21 04h59 +00:00 VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with administrative access to the local system can escalate privileges to 'root'.
6.7
Moyen
CVE-2023-34043 2023-09-26 17h14 +00:00 VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with administrative access to the local system can escalate privileges to 'root'.
6.7
Moyen
Les informations affichées sur CVE Find proviennent de plusieurs sources de référence rigoureusement sélectionnées. Les données CVE sont fournies par MITRE Corporation et la National Vulnerability Database (NVD). Le catalogue des vulnérabilités activement exploitées (KEV) provient de la Cybersecurity and Infrastructure Security Agency (CISA), tandis que les scores EPSS sont issus de FIRST.org. Enfin, les données relatives aux faiblesses logicielles (CWE) et aux schémas d'attaque courants (CAPEC) sont maintenues par MITRE Corporation, et les informations sur les configurations logicielles et matérielles (CPE) proviennent du NVD.