Security Alert (A23-10-21): Multiple Vulnerabilities in VMware Products
24 October 2023
VMware has published security advisories to address multiple vulnerabilities in VMware products. The list of security updates can be found at: https://www.vmware.com/security/advisories/VMSA-2023-0021.html https://www.vmware.com/security/advisories/VMSA-2023-0022.html
VMware Aria Operations for Logs (formerly vRealize Log Insight)
VMware Workstation Pro / Player (Workstation)
Depending on the vulnerabilities being exploited, a successful exploitation of the vulnerabilities could lead to remote code execution, information disclosure, privilege escalation or security restriction bypass on the affected system.
Patches for affected products are available. System administrators of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.