Summary VMware has released updates to address an authentication bypass that may allow an attacker to bypass SSH authentication methods due to the lack of unique cryptographic key generation, allowing the attacker to access the Aria Operations for Networks CLI (command line interface). A remote attacker may be able to leverage this bypass to execute remote code by writing files to arbitrary locations and achieve data exfiltration, lateral movement, and persistence.
This patch also addresses CVE-2023-20890 which is an arbitrary file write vulnerability with a CVSSv3 score of 7.2.
CVE-2023-34039 - Aria Operations for Networks Authentication Bypass Vulnerability