Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-20864 PoC — VMware Aria Operations for Logs 代码问题漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2023/CVE-2023-20864.yaml
Associated Vulnerability
Title:VMware Aria Operations for Logs 代码问题漏洞 (CVE-2023-20864)
Description:VMware Aria Operations for Logs是美国威睿(VMware)公司的一套集中式日志管理解决方案。该产品支持日志整理和日志分析等功能。 VMware Aria Operations for Logs存在安全漏洞,该漏洞源于存在反序列化漏洞,攻击者利用该漏洞可能能够以root身份执行任意代码。
Description
VMware Aria Operations for Logs contains a deserialization vulnerability. An unauthenticated, malicious actor with network access to VMware Aria Operations for Logs may be able to execute arbitrary code as root.
File Snapshot

 id: CVE-2023-20864

info:
  name: VMware Aria Operations for Logs - Unauthenticated Remote Code Exec

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.