A potential vulnerability has been identified in Aria Operations for Logs 8.18.4, where the server name is exposed in HTTP response headers. This disclosure may allow an attacker to determine the software type and version in use, potentially aiding in targeted attacks.

VMware Aria Operations for Logs 8.18.4

VMware By Broadcom is aware of this vulnerability and it will be fixed in the upcoming release of Aria Operations for Logs.

Please refer to the release notes for existing and forthcoming product releases for any updates in relation to this vulnerability. For further queries on this vulnerability please open a Support Request with Broadcom Technical Support and note this Article ID (416398) in the problem description. For more information, see Creating and managing Broadcom support cases.