VMware Aria Operations for Logs–Patch Bypass & Attack Analysis From The Horizon3.ai Threat Research Team

The Horizon3.ai Threat Research Team has just published VMware Aria Operations for Logs CVE-2023-34051 Technical Deep Dive and IOCs detailing how attackers can bypass patches and conduct attacks on VMware Aria Operations for Logs (formerly VMware vRealize Log Insight). 

Today’s post by Horizon3.ai Exploit Developer James Horseman updates Horizon3.ai’s January 27 and January 31, 2023 posts on the vulnerability, and he notes that the indictors of compromise remain the same as noted in the January 27thpost.


Leave a Reply

%d bloggers like this: