NVD - Results

Sort results by:

Search Results (Refine Search)

Search Parameters:

Results Type: Overview
Keyword (text search): cpe:2.3:a:vmware:aria_operations_for_networks:6.11.0:*:*:*:*:*:*:*
CPE Name Search: true

There are 5 matching records.

Displaying matches 1 through 5.

Vuln ID	Summary	CVSS Severity
CVE-2024-22241	Aria Operations for Networks contains a cross site scripting vulnerability. A malicious actor with admin privileges can inject a malicious payload into the login banner and takeover the user account. Published: February 06, 2024; 3:16:04 PM -0500	V4.0:(not available) V3.1: 4.8 MEDIUM V2.0:(not available)
CVE-2024-22240	Aria Operations for Networks contains a local file read vulnerability. A malicious actor with admin privileges may exploit this vulnerability leading to unauthorized access to sensitive information. Published: February 06, 2024; 3:16:03 PM -0500	V4.0:(not available) V3.1: 4.9 MEDIUM V2.0:(not available)
CVE-2024-22239	Aria Operations for Networks contains a local privilege escalation vulnerability. A console user with access to Aria Operations for Networks may exploit this vulnerability to escalate privileges to gain regular shell access. Published: February 06, 2024; 3:16:03 PM -0500	V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available)
CVE-2024-22238	Aria Operations for Networks contains a cross site scripting vulnerability. A malicious actor with admin privileges may be able to inject malicious code into user profile configurations due to improper input sanitization. Published: February 06, 2024; 3:16:03 PM -0500	V4.0:(not available) V3.1: 4.8 MEDIUM V2.0:(not available)
CVE-2024-22237	Aria Operations for Networks contains a local privilege escalation vulnerability. A console user with access to Aria Operations for Networks may exploit this vulnerability to escalate privileges to gain root access to the system. Published: February 06, 2024; 3:16:03 PM -0500	V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available)