all InfoSec news
Exploit Code For Critical VMware Bug Published
Malware Analysis, News and Indicators - Latest topics malware.news
Days after VMware issued patches for a critical-severity vulnerability in its network monitoring tool, the company said that exploit code for the bug has now been published.
The vulnerability (CVE-2023-34039) exists in VMware’s Aria Operations for Networks (formerly vRealize Network Insight) tool, which helps businesses monitor and analyze their networks and applications. According to VMware, the tool has an authentication bypass flaw that stems from a lack of unique cryptographic key generation.
“A malicious actor with network access to Aria …
applications aria aria operations for networks bug businesses code critical cve exploit exploit code insight monitor monitoring monitoring tool network network monitoring networks operations patches severity the company tool vmware vrealize vulnerability