📦 Aria Operations

CVE-2026-22719 is a command injection vulnerability in VMware Aria Operations that allows unauthenticated attackers to execute arbitrary commands during support-assisted product migration. This can le...

This CVE describes a local privilege escalation vulnerability in VMware Aria Operations and VMware Tools. A malicious local user with non-administrative privileges on a VM can exploit this to gain roo...

VMware Aria Operations contains an information disclosure vulnerability where authenticated non-administrative users can retrieve credentials for outbound plugins if they know a valid service credenti...

CVE-2024-38830 is a local privilege escalation vulnerability in VMware Aria Operations. Attackers with local administrative access can exploit this to gain root privileges on the appliance. Organizati...

VMware Aria Operations contains a stored cross-site scripting vulnerability that allows authenticated users with editing access to inject malicious scripts into views. This can lead to session hijacki...

VMware Aria Operations contains a stored cross-site scripting vulnerability that allows authenticated users with editing access to cloud providers to inject malicious scripts. When other users view th...