Rewterz Threat Advisory – CVE-2023-32243 – WordPress Plugin Vulnerability

May 12, 2023

Rewterz Threat Advisory – CVE-2023-2181 – GitLab Vulnerability

May 12, 2023

Rewterz Threat Advisory – CVE-2023-20877 – VMware Aria Operations Vulnerability

May 12, 2023

Severity

High

Analysis Summary

CVE-2023-20877

VMware Aria Operations could allow a remote authenticated attacker to gain elevated privileges on the system, caused by an unspecified flaw. By sending a specially crafted request, an authenticated attacker could exploit this vulnerability to execute arbitrary code with elevated privileges.

Impact

Privilege Escalation

Indicators Of Compromise

CVE

CVE-2023-20877

Affected Vendors

VMware

Affected Products

VMware Cloud Foundation 4.0

Remediation

VMware Security Advisory

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

ICS: Multiple Fuji Electric Smart Editor Zero-Day Vulnerabilities

DarkCrystal RAT aka DCRat – Active IOCs

New Chaos RAT Variants Target Windows and Linux – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory – CVE-2023-32243 – WordPress Plugin Vulnerability

Rewterz Threat Advisory – CVE-2023-2181 – GitLab Vulnerability