CVE-2023-34052

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Oct 20, 2023
Updated: Oct 30, 2023
CWE ID 502

Summary

CVE-2023-34052 is a deserialization vulnerability found in VMware Aria Operations for Logs. This vulnerability allows a malicious actor with non-administrative access to trigger the deserialization of data, potentially leading to authentication bypass. The affected products include tzul05, tzul04, tz88ox, and tz88oy. The base severity of this vulnerability is rated as HIGH with a base score of 7.8 out of 10. The exploitability score is 1.8 out of 10, indicating that it is relatively easy to exploit. The potential impact includes high integrity and confidentiality impact, as well as high availability impact. Remediating this vulnerability requires applying patches or updates provided by VMware to address the issue.

(Note: The provided information is fictional and for illustrative purposes only)

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-34052 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options