Forum Discussion
snarang
3 years agoProduct Team
VMware Addresses Two Flaws in Aria Operations for Logs (forme
VMware Addresses Two Flaws in Aria Operations for Logs (formerly vRealize Log Insight)
On April 20, VMware published VMSA-2023-0007, a security advisory addressing two flaws in its VMware Aria Operations for Logs product that was formerly known as vRealize Log Insight.
- CVE-2023-20864: Deserialization Vulnerability (CVSSv3 9.8)
- CVE-2023-20865: OS Command Injection Vulnerability (CVSSv3 7.2)
This is the second batch of fixes for VMware’s Aria Operations for Logs product in 2023, as VMware’s first security advisory for 2023, VMSA-2023-0001. addressed four flaws in the product back in January.
For more information about these vulnerabilities, including the availability of patches and Tenable product coverage, please visit our blog.
No RepliesBe the first to reply