Shulou(Shulou.com)11/24 Report--

CTOnews.com, August 31, VMware Aria Operations for Networks recently exposed a high-risk authentication vulnerability that allows remote attackers to bypass SSH authentication and access dedicated terminals.

CTOnews.com Note: VMware Aria is a suite for managing and monitoring virtualized environments and hybrid clouds that supports IT automation, log management, analysis generation, network visibility, security and capacity planning, and comprehensive operational management.

The vulnerability was discovered by ProjectDiscovery Research experts, tracking number CVE-2023-34039, with a risk rating of 9.8 on CVSS v3 (out of 10, with a higher score indicating the most destructive) and rated as "critical".

VMware issued a security bulletin yesterday, saying that this vulnerability exists in all Aria 6.x branch versions. Officials say the current solution is to upgrade to version 6.11 or install KB94152 patches on previous versions.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.