7 野に咲く名無し@転載禁止 (主) 2023/09/04 03:37:54
PoC Exploit Released for Critical VMware Aria's SSH Auth Bypass Vulnerability
https://thehackernews.com/2023/09/poc-exploit-released-for-critical.html
Proof-of-concept (PoC) exploit code has been made available for a recently disclosed and patched critical flaw impacting VMware Aria Operations for Networks (formerly vRealize Network Insight).
The flaw, tracked as CVE-2023-34039, is rated 9.8 out of a maximum of 10 for severity and has been described as a case of authentication bypass due to a lack of unique cryptographic key generation.