VMware Patched Critical Vulnerability
Active Exploitation in Aria Operations for Networks
VMware has recently patched a critical vulnerability, but it appears that it has been already exploited in the wild. The vulnerability is present in Aria Operations for Networks, formerly known as vRealize Network Insight.
The Flaw and Its Danger
The vulnerability is called CVE-2023-20887. If exploited, an attacker with network access could potentially perform a command injection attack, which can result in remote code execution. This means that the attacker would be able to execute code on the victim’s system, causing great damage.
Impact on VMware
Unfortunately, this vulnerability also impacts VMware. The company has urged its users to immediately patch their software to the latest version to prevent any further exploitation.
This is yet another example of the importance of staying up-to-date with software patches and versions. Always ensure that your software is updated to the latest version to prevent vulnerabilities and exploit attempts. Remember, better safe than sorry!Original Article: https://thehackernews.com/2023/06/alert-hackers-exploiting-critical.html