CSOonline

VMware offers fixes to severe vulnerabilities in VMware Aria

VMware has fixed multiple high-severity vulnerabilities affecting its cloud management platform (CMP), VMware Aria, which could allow attackers to steal sensitive credentials from the virtualization ...
heise online

VMware Aria Operations: Attackers can read out access data

Broadcom warns of security vulnerabilities in VMware Aria Operations that could allow attackers to spy out access data, for example. Updates are available. It was only on Wednesday of this week that ...
Bleeping Computer

VMware fixes bug exposing CF API admin credentials in audit logs

VMware has patched an information disclosure vulnerability in VMware Tanzu Application Service for VMs (TAS for VMs) and Isolation Segment caused by credentials being logged and exposed via system ...
Bleeping Computer

VMware warns admins of public exploit for vRealize RCE flaw

VMware warned customers on Monday that proof-of-concept (PoC) exploit code is now available for an authentication bypass flaw in vRealize Log Insight (now known as VMware Aria Operations for Logs).