1. Home
  2. Mapping Frameworks
  3. Known Exploited Vulnerabilities Home
  4. Vmware Aria Operations for Networks Command Injection Vulnerability

Known Exploited Vulnerabilities CVE-2023-20887

Aria Operations for Networks contains a command injection vulnerability. A malicious actor with network access to VMware Aria Operations for Networks may be able to perform a command injection attack resulting in remote code execution.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name Notes
CVE-2023-20887 Vmware Aria Operations for Networks Command Injection Vulnerability primary_impact T1059 Command and Scripting Interpreter
Comments
This vulnerability is exploited by a remote, unauthenticated actor to gain remote code execution via a command injection attack. This vulnerability has been exploited in the wild; however, technical details have not been publicly shared.
References
  1. https://thehackernews.com/2023/06/alert-hackers-exploiting-critical.html
  2. https://blog.qualys.com/qualys-insights/2023/09/26/qualys-survey-of-top-10-exploited-vulnerabilities-in-2023
  3. https://its.ny.gov/2023-067
CVE-2023-20887 Vmware Aria Operations for Networks Command Injection Vulnerability exploitation_technique T1190 Exploit Public-Facing Application
Comments
This vulnerability is exploited by a remote, unauthenticated actor to gain remote code execution via a command injection attack. This vulnerability has been exploited in the wild; however, technical details have not been publicly shared.
References
  1. https://thehackernews.com/2023/06/alert-hackers-exploiting-critical.html
  2. https://blog.qualys.com/qualys-insights/2023/09/26/qualys-survey-of-top-10-exploited-vulnerabilities-in-2023
  3. https://its.ny.gov/2023-067