VMware Fixes Five Vulnerabilities in Aria Operations

427/67 Friday, November 29, 2024

VMware has released a security update to address five vulnerabilities in its Aria Operations product (formerly known as VMware vRealize Operations), a comprehensive cloud management platform. These vulnerabilities could potentially be exploited for privilege escalation and cross-site scripting (XSS) attacks. The details of the vulnerabilities are as follows:

  • CVE-2024-38830 (CVSS 7.8): Allows a local admin in Aria Operations to escalate privileges to root.
  • CVE-2024-38831 (CVSS 7.8): Enables attackers with local administrative privileges on VMware Aria Operations to modify properties files to execute malicious commands and escalate privileges to root.
  • CVE-2024-38832 (CVSS 7.1): A stored XSS vulnerability that lets attackers with permissions to modify views inject malicious scripts, potentially leading to attacks within the VMware Aria Operations system.
  • CVE-2024-38833 (CVSS 6.8): A stored XSS vulnerability caused by the modification of email templates in Aria Operations, allowing attackers to insert malicious scripts.
  • CVE-2024-38834 (CVSS 6.5): A stored XSS vulnerability that allows attackers with permissions to edit cloud provider settings in Aria Operations to inject malicious scripts.

Users of VMware Aria Operations are strongly advised to update their systems immediately to mitigate the risks associated with these vulnerabilities.

Source https://securityaffairs.com/171472/security/vmware-fixed-five-vulnerabilitiesaria-operations.html