Thursday 26 August 2021
The impact of this issue announcement is critical. Please act accordingly to rectify the issue, as stated below.
What you need to know:
VMware has released security patches to address a series of vulnerabilities in vRealize Operations, including four categorised as high severity. The most severe flaw is a broken access control vulnerability (CVE-2021-22025), which could allow an attacker to gain unauthenticated API access when successfully exploited.
- VMware vRealize Operations
- VMware Cloud Foundation
- vRealize Suite Lifecycle Manager