VMware Aria Operations for Logs InternalClusterController Java Deserialization Vulnerability Remote Code Execution Exploit

This module exploits a java deserialization vulnerability present in InternalClusterController class that is reachable via several endpoints of VMware Aria Operations for Logs. The deployed agent will run with root privileges.
CVE Link
CVE-2023-20864
Exploit Platform
Linux
Exploit Type
Exploits
Remote Code Execution
Product Name
Impact