CVE-2023-34052 (aria_operations_for_logs)

VMware Aria Operations for Logs contains a deserialization vulnerability. A malicious actor with non-administrative access to the local system can trigger the deserialization of data which could result in authentication bypass.

access actor aria authentication authentication bypass bypass cve data deserialization local logs malicious non operations result system trigger vmware vmware aria operations for logs vulnerability