VMware vRealize Operations (vROps) CSRF Bypass Vulnerability - 20230203001

Overview

The WA SOC has observed a vulnerability in VMware vRealize Operations (vROps) was privately reported to VMware. vRealize Operations (vROps) contains a CSRF bypass vulnerability. A malicious user could execute actions on the platform on behalf of the authenticated victim user.

What is the vulnerability?

CVE-2023-20856 - 6.5 CVSSv3 Score

What is vulnerable?

The vulnerability affects the following products:

• VMware vRealize Operations (vROps)

Recommendation

The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices: https://www.vmware.com/security/advisories/VMSA-2023-0002.html

Additional References

• https://www.cisa.gov/uscert/ncas/current-activity/2023/02/01/vmware-releases-security-update-vmware-vrealize-operations
• https://www.vmware.com/security/advisories/VMSA-2023-0002.html
• https://nvd.nist.gov/vuln/detail/CVE-2023-20856