Virtualization technology powerhouse VMware’s enterprise-facing log analysis product still has serious security issues.
The company issued a warning about the possibility of pre-authentication remote root exploits on Thursday in addition to shipping urgent patches to address critical security flaws in the VMware Aria Operations for Logs (previously vRealize Log Insight) product line. Two distinct vulnerabilities in the VMware Aria Operations for Logs suite are listed as CVE-2023-20864 and CVE-2023-20865 in a critical-level advisory from VMware.
The advisory also offers recommendations to help businesses fix the problems. The CISA KEV (Known Exploited Vulnerabilities) must-patch catalog includes the VMWare vRealize product.
Read More: VMware Patches Pre-Auth Code Execution Flaw in Logging Product
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.