// For flags

CVE-2023-20879

 

Severity Score

6.7
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

VMware Aria Operations contains a Local privilege escalation vulnerability. A malicious actor with administrative privileges in the Aria Operations application can gain root access to the underlying operating system.

*Credits: N/A
CVSS Scores
Attack Vector
Local
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2022-11-01 CVE Reserved
  • 2023-05-12 CVE Published
  • 2023-05-13 EPSS Updated
  • 2024-08-02 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
References (1)
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Vmware
Search vendor "Vmware"
Cloud Foundation
Search vendor "Vmware" for product "Cloud Foundation"
>= 4.0 <= 4.5
Search vendor "Vmware" for product "Cloud Foundation" and version " >= 4.0 <= 4.5"
-
Affected
Vmware
Search vendor "Vmware"
Vrealize Operations
Search vendor "Vmware" for product "Vrealize Operations"
8.6.0
Search vendor "Vmware" for product "Vrealize Operations" and version "8.6.0"
-
Affected
Vmware
Search vendor "Vmware"
Vrealize Operations
Search vendor "Vmware" for product "Vrealize Operations"
8.6.0
Search vendor "Vmware" for product "Vrealize Operations" and version "8.6.0"
hotfix1
Affected
Vmware
Search vendor "Vmware"
Vrealize Operations
Search vendor "Vmware" for product "Vrealize Operations"
8.6.0
Search vendor "Vmware" for product "Vrealize Operations" and version "8.6.0"
hotfix2
Affected
Vmware
Search vendor "Vmware"
Vrealize Operations
Search vendor "Vmware" for product "Vrealize Operations"
8.6.0
Search vendor "Vmware" for product "Vrealize Operations" and version "8.6.0"
hotfix4
Affected
Vmware
Search vendor "Vmware"
Vrealize Operations
Search vendor "Vmware" for product "Vrealize Operations"
8.6.0
Search vendor "Vmware" for product "Vrealize Operations" and version "8.6.0"
hotfix5
Affected
Vmware
Search vendor "Vmware"
Vrealize Operations
Search vendor "Vmware" for product "Vrealize Operations"
8.6.0
Search vendor "Vmware" for product "Vrealize Operations" and version "8.6.0"
hotfix6
Affected
Vmware
Search vendor "Vmware"
Vrealize Operations
Search vendor "Vmware" for product "Vrealize Operations"
8.6.0
Search vendor "Vmware" for product "Vrealize Operations" and version "8.6.0"
hotfix8
Affected
Vmware
Search vendor "Vmware"
Vrealize Operations
Search vendor "Vmware" for product "Vrealize Operations"
8.6.0
Search vendor "Vmware" for product "Vrealize Operations" and version "8.6.0"
hotfix9
Affected
Vmware
Search vendor "Vmware"
Vrealize Operations
Search vendor "Vmware" for product "Vrealize Operations"
8.10.0
Search vendor "Vmware" for product "Vrealize Operations" and version "8.10.0"
-
Affected
Vmware
Search vendor "Vmware"
Vrealize Operations
Search vendor "Vmware" for product "Vrealize Operations"
8.10.0
Search vendor "Vmware" for product "Vrealize Operations" and version "8.10.0"
hotfix1
Affected
Vmware
Search vendor "Vmware"
Vrealize Operations
Search vendor "Vmware" for product "Vrealize Operations"
8.10.0
Search vendor "Vmware" for product "Vrealize Operations" and version "8.10.0"
hotfix2
Affected