VMware Aria Operations Security Breach: Exploitation in the Wild
Critical Vulnerability in VMware Aria Operations Exploited by Attackers
A critical vulnerability in VMware Aria Operations, a platform used for IT monitoring and management, has been exploited by attackers in the wild. The flaw, identified as CVE-2026-22719, is a high-severity command injection issue that can be leveraged by malicious actors without authentication.
Vulnerability Details
According to a recent advisory from Broadcom, the company that maintains VMware Aria Operations, the vulnerability can be exploited to execute arbitrary commands, potentially leading to remote code execution on affected systems. The issue arises during the support-assisted product migration process.
“A malicious unauthenticated actor may exploit this issue to execute arbitrary commands which may lead to remote code execution in VMware Aria Operations while support-assisted product migration is in progress.”
Exploitation and Patch
The US Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2026-22719 to its Known Exploited Vulnerabilities (KEV) catalog, mandating that federal agencies address the issue by March 24. While t
About Author
English