(CVE-2026-22719, CVE-2026-22720 and CVE-2026-22721)
VMware Aria Operations updates address multiple vulnerabilities

Broadcom published security advisory VMSA-2026-0001 on February 24, 2026, revealing three vulnerabilities in VMware Aria Operations that may enable attackers to run unauthorized commands remotely.

VMware Aria Operations, VMware Cloud Foundation, VMware Telco Cloud Platform, and VMware Telco Cloud Infrastructure have flaws, but patches are now available for all affected versions.

• Data Breach

LastPass says hackers stole customer data via Klue, supply chain breach

By infosecbulletin / Tuesday , June 23 2026

LastPass has reported a security issue with its vendor, Klue. This incident allowed an attacker unauthorized access to customer data....

Read More

• Cyber Attack

New Apple Exploit Bypasses Boot Defenses, Possibly Affects Millions of iPhones Worldwide

By infosecbulletin / Tuesday , June 23 2026

Researchers at cybersecurity firm Paradigm Shift found a new flaw called usbliter8. This flaw can get around main boot protections...

Read More

• Cyber Attack
• Data Breach

India’s Tata Electronics hit by cyber breach: Hacker target 630 GB record

By infosecbulletin / Tuesday , June 23 2026

A cyber attack seems to have affected one of India's top electronics companies. Tata Electronics has said there was a...

Read More

• Hot Topic

Anthropic’s Mythos reportedly broke NSA classified systems in hours

By infosecbulletin / Monday , June 22 2026

The recent finding shows how powerful Mythos is: the AI can access the US government's secret networks in just a...

Read More

• International

OpenAI New Method “Deployment Simulation” Predicts AI Risks Before Deployment

By infosecbulletin / Monday , June 22 2026

Test before going live is important for AI developers. But there's a problem: testing usually uses fake scenarios that often...

Read More

• Cyber Attack

AryStinger botnet infected thousands of D-Link routers globally

By infosecbulletin / Sunday , June 21 2026

AryStinger has taken control of over 4,000 old D-Link routers to use them as proxies for harmful traffic. The team...

Read More

• International

Hacker suspected of sending alerts across Brazil

By infosecbulletin / Sunday , June 21 2026

Brazil's government suspects a hacking attack triggered an unauthorized ‌alert sent to cell phones across parts of the country early...

Read More

• Hot Topic

CyberSentinel AI features 33 security tools like Nmap, SQLMap, and ZAP, utilizing Claude and GPT

By infosecbulletin / Sunday , June 21 2026

A new open-source cybersecurity tool named CyberSentinel AI v3.0 has come out. It is an important step in self-operated security...

Read More

• Event

Barracuda hosts Dhaka roundtable on cyber resilience

By infosecbulletin / Saturday , June 20 2026

Barracuda gathered industry people in Dhaka on 18 June 2026 for a roundtable talk about cyber resilience. The company shared...

Read More

• Alert
• International

CISA Alerts Fortinet Users as FortiBleed Affects 86,644 FortiGate Devices

By infosecbulletin / Saturday , June 20 2026

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) asked Fortinet users with FortiGate devices on Thursday to act to protect...

Read More

Vulnerabilities Overview:

The most critical flaw, tracked as CVE-2026-22719, is a command injection vulnerability with a CVSSv3 score of 8.1. The second vulnerability, CVE-2026-22720, is a stored cross-site scripting (XSS) flaw scored at 8.0. The third flaw, CVE-2026-22721, is a privilege escalation vulnerability with a CVSSv3 score of 6.2.

Affected Products & Fixes

Broadcom urges administrators to apply patches right away. Organizations using VMware Aria Operations should prioritize upgrading to the listed fixed versions.

Broadcom reported that Sven Nobis and Lorin Lehawany from ERNW Enno Rey Netzwerke GmbH discovered this vulnerability. All three were privately shared with Broadcom prior to public disclosure.