Cloud computing and virtualization company VMWare disclosed a trio of high-severity vulnerabilities affecting their network monitoring tool, Aria Operations for Networks. According to the company, one bug (CVE 2023-20887) is a command injection vulnerability with a CVSS severity score of 9.8 that allows an attacker to remotely execute code.
Source: SC Magazine