Security Alert (A23-02-18): Multiple Vulnerabilities in VMware Products
22 February 2023
VMware has published security advisories to address multiple vulnerabilities in VMware products. The list of the security updates can be found at: https://www.vmware.com/security/advisories/VMSA-2023-0004.html https://www.vmware.com/security/advisories/VMSA-2023-0005.html
VMware Carbon Black App Control
VMware Cloud Foundation
VMware vRealize Automation
VMware vRealize Orchestrator
Depending on the vulnerability being exploited, a successful exploitation could lead to arbitrary command injection, information disclosure, privilege escalation or security restriction bypass on the affected system.
Patches for affected products are available. System administrators of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.