Vulnerabilities > Vmware > Vrealize Operations > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-12 | CVE-2023-20877 | Unspecified vulnerability in VMWare Cloud Foundation and Vrealize Operations VMware Aria Operations contains a privilege escalation vulnerability. | 8.8 |
| 2023-05-12 | CVE-2023-20878 | Deserialization of Untrusted Data vulnerability in VMWare Cloud Foundation and Vrealize Operations VMware Aria Operations contains a deserialization vulnerability. | 7.2 |
| 2023-02-01 | CVE-2023-20856 | Cross-Site Request Forgery (CSRF) vulnerability in VMWare Vrealize Operations VMware vRealize Operations (vROps) contains a CSRF bypass vulnerability. | 8.8 |
| 2022-12-16 | CVE-2022-31707 | Unspecified vulnerability in VMWare Vrealize Operations vRealize Operations (vROps) contains a privilege escalation vulnerability. | 7.2 |
| 2022-08-10 | CVE-2022-31672 | Unspecified vulnerability in VMWare Vrealize Operations VMware vRealize Operations contains a privilege escalation vulnerability. | 7.2 |
| 2022-08-10 | CVE-2022-31673 | Unspecified vulnerability in VMWare Vrealize Operations VMware vRealize Operations contains an information disclosure vulnerability. | 8.8 |
| 2022-08-10 | CVE-2022-31675 | Unspecified vulnerability in VMWare Vrealize Operations VMware vRealize Operations contains an authentication bypass vulnerability. | 7.5 |
| 2020-02-19 | CVE-2020-3945 | Unspecified vulnerability in VMWare Vrealize Operations 6.6.0/6.7.0 vRealize Operations for Horizon Adapter (6.7.x prior to 6.7.1 and 6.6.x prior to 6.6.1) contains an information disclosure vulnerability due to incorrect pairing implementation between the vRealize Operations for Horizon Adapter and Horizon View. | 7.5 |
| 2020-02-19 | CVE-2020-3944 | Improper Authentication vulnerability in VMWare Vrealize Operations 6.6.0/6.7.0 vRealize Operations for Horizon Adapter (6.7.x prior to 6.7.1 and 6.6.x prior to 6.6.1) has an improper trust store configuration leading to authentication bypass. | 8.6 |
| 2016-12-29 | CVE-2016-7462 | Exposed Dangerous Method or Function vulnerability in VMWare Vrealize Operations The Suite REST API in VMware vRealize Operations (aka vROps) 6.x before 6.4.0 allows remote authenticated users to write arbitrary content to files or rename files via a crafted DiskFileItem in a relay-request payload that is mishandled during deserialization. | 8.5 |