Vulnerabilities > Vmware > Aria Operations FOR Logs > High

DATE CVE VULNERABILITY TITLE RISK
2023-10-20 CVE-2023-34052 Deserialization of Untrusted Data vulnerability in VMWare Aria Operations for Logs
VMware Aria Operations for Logs contains a deserialization vulnerability. A malicious actor with non-administrative access to the local system can trigger the deserialization of data which could result in authentication bypass.
local
low complexity
vmware CWE-502
7.8
7.8
2023-04-20 CVE-2023-20865 Command Injection vulnerability in VMWare Aria Operations for Logs and Cloud Foundation
VMware Aria Operations for Logs contains a command injection vulnerability.
network
low complexity
vmware CWE-77
7.2
7.2