CVE-2023-20887
CRITICALAria Operations for Networks contains a command injection vulnerability. A malicious actor with network access to VMware Aria Operations for Networks may be able to perform a command…
EPSS Exploitation Probability
EPSS (Exploit Prediction Scoring System) is a daily probability model maintained by FIRST.org. It estimates the likelihood a CVE will be exploited in production environments within the next 30 days, derived from real-world threat intelligence signals.
Description
Aria Operations for Networks contains a command injection vulnerability. A malicious actor with network access to VMware Aria Operations for Networks may be able to perform a command injection attack resulting in remote code execution.
Affected Products
aria operations for networksvmwareResearch use only. For defensive security, authorized penetration testing, and academic research only. Never execute exploit code against systems without explicit written authorization.
Aria Operations for Networks contains a command injection vulnerability.…
Aria Operations for Networks contains a command injection vulnerability.…
Aria Operations for Networks contains a command injection vulnerability.…
Aria Operations for Networks contains a command injection vulnerability.…
Aria Operations for Networks contains a command injection vulnerability.…
Aria Operations for Networks contains a command injection vulnerability.…
Aria Operations for Networks contains a command injection vulnerability.…
Frequently Asked Questions
Is CVE-2023-20887 in your stack?
O3 detects CVE-2023-20887 across dependencies and uses function-level reachability to confirm whether the vulnerable code path is actually reachable — not just present. No false positives.