Main Vulnerability Database Vulnerabilities #VU15886

Authorization bypass in Aria Operations for Logs (formerly vRealize Log Insight) - CVE-2018-6980

Published: November 13, 2018 / Updated: November 14, 2018

Vulnerability identifier: #VU15886

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2018-6980

CWE-ID: CWE-285

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: VMware, Inc

Affected software:
Aria Operations for Logs (formerly vRealize Log Insight)

Detailed vulnerability description

The vulnerability allows a remote administrative attacker to bypass authorization on the target system.

The vulnerability exists due to improper authorization in the user registration method. An Admin attacker with view only permission can perform certain administrative functions not allowed to perform.

How to mitigate CVE-2018-6980

The vulnerability has been fixed in the versions 4.6.2, 4.7.1.

Sources

https://www.vmware.com/security/advisories/VMSA-2018-0028.html

Authorization bypass in Aria Operations for Logs (formerly vRealize Log Insight) - CVE-2018-6980

Detailed vulnerability description

How to mitigate CVE-2018-6980

Sources

Please verify you're human