CVE-2024-38831 | THREATINT

Description

VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with local administrative privileges can insert malicious commands into the properties file to escalate privileges to a root user on the appliance running VMware Aria Operations.

PUBLISHED Reserved 2024-06-19 | Published 2024-11-26 | Updated 2024-11-26 | Assigner vmware

HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Product status

Default status

unaffected

8.x (proprietary) before 8.18.2

affected

References

support.broadcom.com/...l/content/SecurityAdvisories/0/25199

cve.org (CVE-2024-38831)

nvd.nist.gov (CVE-2024-38831)

Download JSON