VMware Vrealize Network Insight
By the Year
In 2024 there have been 0 vulnerabilities in VMware Vrealize Network Insight . Last year Vrealize Network Insight had 3 security vulnerabilities published. Right now, Vrealize Network Insight is on track to have less security vulnerabilities in 2024 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 3 | 8.70 |
| 2022 | 2 | 8.65 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Vrealize Network Insight vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent VMware Vrealize Network Insight Security Vulnerabilities
Aria Operations for Networks contains an information disclosure vulnerability
CVE-2023-20889
7.5 - High
- June 07, 2023
Aria Operations for Networks contains an information disclosure vulnerability. A malicious actor with network access to VMware Aria Operations for Networks may be able to perform a command injection attack resulting in information disclosure.
Command Injection
Aria Operations for Networks contains an authenticated deserialization vulnerability
CVE-2023-20888
8.8 - High
- June 07, 2023
Aria Operations for Networks contains an authenticated deserialization vulnerability. A malicious actor with network access to VMware Aria Operations for Networks and valid 'member' role credentials may be able to perform a deserialization attack resulting in remote code execution.
Marshaling, Unmarshaling
Aria Operations for Networks contains a command injection vulnerability
CVE-2023-20887
9.8 - Critical
- June 07, 2023
Aria Operations for Networks contains a command injection vulnerability. A malicious actor with network access to VMware Aria Operations for Networks may be able to perform a command injection attack resulting in remote code execution.
Command Injection
The vRealize Log Insight contains a Directory Traversal Vulnerability
CVE-2022-31703
7.5 - High
- December 14, 2022
The vRealize Log Insight contains a Directory Traversal Vulnerability. An unauthenticated, malicious actor can inject files into the operating system of an impacted appliance which can result in remote code execution.
Directory traversal
vRealize Network Insight (vRNI) contains a command injection vulnerability present in the vRNI REST API
CVE-2022-31702
9.8 - Critical
- December 14, 2022
vRealize Network Insight (vRNI) contains a command injection vulnerability present in the vRNI REST API. A malicious actor with network access to the vRNI REST API can execute commands without authentication.
Command Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for VMware Vrealize Network Insight or by VMware? Click the Watch button to subscribe.
