CSOonline

VMware offers fixes to severe vulnerabilities in VMware Aria

VMware has fixed multiple high-severity vulnerabilities affecting its cloud management platform (CMP), VMware Aria, which could allow attackers to steal sensitive credentials from the virtualization ...
heise online

VMware Aria Operations: Attackers can read out access data

Broadcom warns of security vulnerabilities in VMware Aria Operations that could allow attackers to spy out access data, for example. Updates are available. It was only on Wednesday of this week that ...
Bleeping Computer

VMware fixes bug exposing CF API admin credentials in audit logs

VMware has patched an information disclosure vulnerability in VMware Tanzu Application Service for VMs (TAS for VMs) and Isolation Segment caused by credentials being logged and exposed via system ...
Bleeping Computer

VMware fixes critical security bugs in vRealize log analysis tool

VMware released security patches on Tuesday to address vRealize Log Insight vulnerabilities that could enable attackers to gain remote execution on unpatched appliances. vRealize Log Insight (now ...
Dark Reading

Critical VMware RCE Vulnerabilities Targeted by Public Exploit Code

Three security vulnerabilities affecting VMware's vRealize Log Insight platform now have public exploit code circulating, offering a map for cybercriminals to follow to weaponize them. These include ...