#VU85425 Improper access control in Aria Automation (formerly vRealize Automation) - CVE-2023-34063

Cybersecurity Help s.r.o.

Published: 2024-01-16 | Updated: 2024-09-04

Vulnerability identifier: #VU85425

Vulnerability risk: High

CVSSv4.0: 5.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2023-34063

CWE-ID: CWE-284

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Aria Automation (formerly vRealize Automation)
Server applications / Directory software, identity management

Vendor: VMware, Inc

Description

The vulnerability allows a remote user to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to improper access restrictions. A remote user can bypass implemented security restrictions and gain unauthorized access to remote organizations and workflows.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Aria Automation (formerly vRealize Automation): 8.11.0 - 8.14.1

External links
https://www.vmware.com/security/advisories/VMSA-2024-0001.html
https://kb.vmware.com/s/article/96098
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/23680

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Dell vRealize Data Protection Extension update for VMware Aria Automation

Improper access control in VMware Aria Automation