CVE-2023-34052 Information

Description

VMware Aria Operations for Logs contains a deserialization vulnerability. A malicious actor with non-administrative access to the local system can trigger the deserialization of data which could result in authentication bypass.

Reference

https://www.vmware.com/security/advisories/VMSA-2023-0021.html