VMware Aria Automation Product Security Update Advisory (CVE-2023-34063)

Jan 19 2024

Overview

An update has been made available to fix an access control lapse vulnerability in Aria Automation by VMware. Users of affected versions are advised to update to the latest version.

Affected Products

VMware Aria Automation versions 8.16, 8.14.x, 8.13.x, 8.12.x, 8.11.x
VMware Cloud Foundation (Aria Automation) 5.x, 4.x versions

Resolved Vulnerabilities

Access Control Lack of Control Vulnerability in Aria Automation by VMware (CVE-2023-34063)

Vulnerability Patches

A patch for the vulnerability was made available in the January 18, 2023 update.
If you are using VMware’s Aria Automation product, please follow the instructions in the “Solution topic” on the reference site[1] to update to the latest version.
If you are using VMware’s VMware Cloud Foundation (Aria Automation) product, please follow the instructions in the “Solution topic” on the reference site [2] to update to the latest version.

Referenced Sites

[1] https://kb.vmware.com/s/article/96098

[2] https://kb.vmware.com/s/article/96136

[3] https://www.vmware.com/security/advisories/VMSA-2024-0001.html

VMware Aria Automation Product Security Update Advisory (CVE-2023-34063)

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Security Update Advisory for python pyload Package (CVE-2024-22416)

Apple Family January 2024 1st Security Update Advisory

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Tags:

Security Update Advisory for python pyload Package (CVE-2024-22416)

Apple Family January 2024 1st Security Update Advisory