Primary

Context

VMware Aria Operations Privilege Escalation Vulnerability

Vulnerability

Patched

A privilege escalation vulnerability exists in VMware Aria Operations. A malicious actor with vCenter privileges to access Aria Operations can exploit this vulnerability to gain administrative access within VMware Aria Operations. This vulnerability is also present in VMware Cloud Foundation, VMware Telco Cloud Platform, and VMware Telco Cloud Infrastructure.

Impact

Exploitation of this vulnerability allows for unauthorized administrative access in VMware Aria Operations.

Remediation

To address this vulnerability, users should upgrade to VMware Aria Operations version 8.18.6, VMware Cloud Foundation 9.0.2.0, or VMware Telco Cloud Infrastructure versions 3.x or 2.x. Instructions for downloading these versions are available on the Broadcom Support website.

Added: Feb 26, 2026, 12:26 AM

Updated: Feb 26, 2026, 12:26 AM

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

5.0

exploitability

4.8

remediation

7.7

relevance

3.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

5.0

exploitability

4.8

remediation

7.7

relevance

3.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

VMware Aria Operations Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

VMware Aria Operations

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating