CVE-2026-22719: Broadcom VMware Aria Operations Command Injection

Broadcom VMware Aria Operations Command Injection Vulnerability. Broadcom VMware Aria Operations formerly known as vRealize Operations (vROps) contains a command injection vulnerability that allows an unauthenticated attacker to execute arbitrary commands, potentially leading to remote code execution during support‑assisted product migration.

• CISA KEV-listed (remediation due 2026-03-24)
• EPSS 1.9% (83.6% percentile)

Browse the CVE database

Read the full analysis on IntelFusions