Security News > 2023 > January > VMware fixes critical security bugs in vRealize log analysis tool
2023-01-24 22:01
VMware released security patches on Tuesday to address vRealize Log Insight vulnerabilities that could enable attackers to gain remote execution on unpatched appliances.
vRealize Log Insight is a log analysis and management tool that helps analyze terabytes of infrastructure and application logs in VMware environments.
The company said the vulnerabilities were addressed with VMware vRealize Log Insight 8.10.2.
VMware provides detailed instructions on upgrading to the latest version of vRealize Log Insight here.
To apply the workaround, log into each vRealize Log Insight node in your cluster as root via SSH and execute a script.
Hackers exploit critical VMware RCE flaw to install backdoors.