VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with local administrative privileges can insert malicious commands into the properties file to escalate privileges to a root user on the appliance running VMware Aria Operations.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Vmware |
|
Configuration 1 [-]
|
No data.
References
History
Wed, 14 May 2025 17:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Vmware cloud Foundation
|
|
| CPEs | cpe:2.3:a:vmware:cloud_foundation:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Vmware cloud Foundation
|
Tue, 26 Nov 2024 15:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Vmware
Vmware aria Operations |
|
| Weaknesses | CWE-77 | |
| CPEs | cpe:2.3:a:vmware:aria_operations:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Vmware
Vmware aria Operations |
|
| Metrics |
ssvc
|
Tue, 26 Nov 2024 12:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with local administrative privileges can insert malicious commands into the properties file to escalate privileges to a root user on the appliance running VMware Aria Operations. | |
| Title | Local privilege escalation vulnerability (CVE-2024-38831) | |
| References |
| |
| Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: vmware
Published: 2024-11-26T11:50:20.202Z
Updated: 2024-11-26T15:06:18.650Z
Reserved: 2024-06-19T22:32:07.790Z
Link: CVE-2024-38831
Vulnrichment
Updated: 2024-11-26T15:06:14.373Z
NVD
Status : Analyzed
Published: 2024-11-26T12:15:18.590
Modified: 2025-05-14T16:43:22.730
Link: CVE-2024-38831
Redhat
No data.