N/A

Aria Operations for Networks contains an Authentication Bypass vulnerability due to a lack of unique cryptographic key generation. A malicious actor with network access to Aria Operations for Networks could bypass SSH authentication to gain access to the Aria Operations for Networks CLI.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

N/A

VMware Aria Operations 加密问题漏洞

VMware Aria Operations是美国威睿（VMware）公司的一个统一的、人工智能驱动的自动驾驶 IT 运营管理平台，适用于私有云、混合云和多云环境。 Aria Operations for Networks存在安全漏洞，该漏洞源于缺乏唯一的加密密钥生成，导致身份验证绕过， 攻击者利用该可以绕过 SSH 身份验证来访问 Aria Operations for Networks CLI。

N/A

N/A