Vulnerability Details : CVE-2023-34039
Public exploit exists!
Aria Operations for Networks contains an Authentication Bypass vulnerability due to a lack of unique cryptographic key generation. A malicious actor with network access to Aria Operations for Networks could bypass SSH authentication to gain access to the Aria Operations for Networks CLI.
Products affected by CVE-2023-34039
- cpe:2.3:a:vmware:aria_operations_for_networks:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2023-34039
94.51%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 99 %
Percentile, the proportion of vulnerabilities that are scored at or less
Metasploit modules for CVE-2023-34039
-
VMWare Aria Operations for Networks (vRealize Network Insight) SSH Private Key Exposure
Disclosure Date: 2023-08-29First seen: 2023-10-25exploit/linux/ssh/vmware_vrni_known_privkeyVMWare Aria Operations for Networks (vRealize Network Insight) versions 6.0.0 through 6.10.0 do not randomize the SSH keys on virtual machine initialization. Since the key is easily retrievable, an attacker can use it to gain unauthorized remote access as the "su
CVSS scores for CVE-2023-34039
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
9.8
|
CRITICAL | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
3.9
|
5.9
|
NIST | |
9.8
|
CRITICAL | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
3.9
|
5.9
|
VMware |
CWE ids for CVE-2023-34039
-
The product uses a broken or risky cryptographic algorithm or protocol.Assigned by: nvd@nist.gov (Primary)
References for CVE-2023-34039
-
http://packetstormsecurity.com/files/174452/VMWare-Aria-Operations-For-Networks-Remote-Code-Execution.html
VMWare Aria Operations For Networks Remote Code Execution ≈ Packet StormThird Party Advisory;VDB Entry
-
https://www.vmware.com/security/advisories/VMSA-2023-0018.html
VMSA-2023-0018Patch;Vendor Advisory
-
http://packetstormsecurity.com/files/175320/VMWare-Aria-Operations-For-Networks-SSH-Private-Key-Exposure.html
VMWare Aria Operations For Networks SSH Private Key Exposure ≈ Packet StormExploit;Third Party Advisory;VDB Entry
Jump to