"CISA Says Latest VMware Analytics Bug Being Exploited"

According to the US Cybersecurity and Infrastructure Security Agency (CISA), hackers are exploiting a new vulnerability impacting a popular VMware network analytics product. CISA has added CVE-2023-20887 to its catalog of known exploited vulnerabilities after researchers brought further attention to it. VMware confirmed that it is being exploited in the wild. The flaw impacts VMware Aria Operations for Networks, a product used by network administrators for managing VMware and Kubernetes deployments. VMware noted in its advisory that a malicious actor with network access to VMware Aria Operations for Networks could conduct a command injection attack resulting in Remote Code Execution (RCE), so the flaw has a critical severity CVSS score of 9.8. VMware confirmed on June 13 that exploit code was made public after a researcher known as SinSinology shared it on GitHub. CISA and VMware advised customers to update their systems to the most recent version. This article continues to discuss the VMware analytics bug and observations of its exploitation in the wild. 

The Record reports "CISA Says Latest VMware Analytics Bug Being Exploited"