US Cybersecurity Adds Exploited VMware Aria Operations To KEV Catalog (thehackernews.com) 4
joshuark writes: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a VMware Aria Operations vulnerability tracked as CVE-2026-22719 to its Known Exploited Vulnerabilities catalog, flagging the flaw as exploited in attacks. VMware Aria Operations is an enterprise monitoring platform that helps organizations track the performance and health of servers, networks, and cloud infrastructure. The flaw has now been added to the CISA's Known Exploited Vulnerabilities (KEV) catalog, with the U.S. cyber agency requiring federal civilian agencies to address the issue by March 24, 2026. Broadcom said it is aware of reports indicating the vulnerability is exploited in attacks but cannot confirm the claims.
"A malicious unauthenticated actor may exploit this issue to execute arbitrary commands which may lead to remote code execution in VMware Aria Operations while support-assisted product migration is in progress," the advisory explains. Broadcom released security patches on February 24 and also provided a temporary workaround for organizations unable to apply the patches immediately. The mitigation is a shell script named "aria-ops-rce-workaround.sh," which must be executed as root on each Aria Operations appliance node. There are currently no details on how the vulnerability is being exploited in the wild, who is behind it, and the scale of such efforts.
"A malicious unauthenticated actor may exploit this issue to execute arbitrary commands which may lead to remote code execution in VMware Aria Operations while support-assisted product migration is in progress," the advisory explains. Broadcom released security patches on February 24 and also provided a temporary workaround for organizations unable to apply the patches immediately. The mitigation is a shell script named "aria-ops-rce-workaround.sh," which must be executed as root on each Aria Operations appliance node. There are currently no details on how the vulnerability is being exploited in the wild, who is behind it, and the scale of such efforts.
AI health monitor suffers health problems /s (Score:3)
“It provides full-stack visibility into applications, infrastructure, and platform services, helping organizations achieve consistent operations, proactive issue resolution, and efficient resource management.”
What is VMware Aria? (Score:2)
source: https://www.techtarget.com/sea... [techtarget.com]
VMware Aria Suite, formerly called vRealize Suite, is a software platform designed to help IT administrators build and manage heterogeneous, hybrid cloud environments. The suite was originally called the vCenter Operations Management Suite, but in August 2014, VMware rebranded the suite and its related products to vRealize. In April 2023, VMware changed the name to Aria.
Is anyone surprised that moving to "the cloud" is/was a bad idea that introduces unnecessary risk? Also, rebranding a product is something that should require regulatory approval because way too much of it which causes consumer confusion. [wikipedia.org]
Re: (Score:2)
rebranding a product is something that should require regulatory approval
This is a great idea, and both logically and easily enforceable through trademark denial.