Vmware Aria Operations For Logs — known CVE vulnerabilities
Every CVE whose affected-product data names Vmware Aria Operations For Logs, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2023-34051 — CVSS 9.8 (critical): VMware Aria Operations for Logs contains an authentication bypass vulnerability. An unauthenticated, malicious actor can inject files into…
CVE-2023-20864 — CVSS 9.8 (critical): VMware Aria Operations for Logs contains a deserialization vulnerability. An unauthenticated, malicious actor with network access to VMware…
CVE-2025-22218 — CVSS 8.5 (high): VMware Aria Operations for Logs contains an information disclosure vulnerability. A malicious actor with View Only Admin permissions may be…
CVE-2023-34052 — CVSS 7.8 (high): VMware Aria Operations for Logs contains a deserialization vulnerability. A malicious actor with non-administrative access to the local…
CVE-2023-20865 — CVSS 7.2 (high): VMware Aria Operations for Logs contains a command injection vulnerability. A malicious actor with administrative privileges in VMware Aria…
CVE-2025-22219 — CVSS 6.8 (medium): VMware Aria Operations for Logs contains a stored cross-site scripting vulnerability. A malicious actor with non-administrative privileges…
CVE-2025-22221 — CVSS 5.2 (medium): VMware Aria Operation for Logs contains a stored cross-site scripting vulnerability. A malicious actor with admin privileges to VMware Aria…
CVE-2025-22220 — CVSS 4.3 (medium): VMware Aria Operations for Logs contains a privilege escalation vulnerability. A malicious actor with non-administrative privileges and…