← ExploitWatch
HomeExploited Vulnerabilities

CVE-2023-20887 — Actively Exploited: Aria Operations for Networks (VMware)

VMware Aria Operations for Networks (formerly vRealize Network Insight) contains a command injection vulnerability that allows a malicious actor with network access to perform an attack resulting in remote code execution.

CVE IDCVE-2023-20887
VendorVMware
ProductAria Operations for Networks
Vulnerability nameVmware Aria Operations for Networks Command Injection Vulnerability
Date added2023-06-22
Remediation due2023-07-13
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionVMware Aria Operations for Networks (formerly vRealize Network Insight) contains a command injection vulnerability that allows a malicious actor with network access to perform an attack resulting in remote code execution.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →