Security News > 2023 > January > VMware fixes critical security bugs in vRealize log analysis tool
2023-01-24 22:01
VMware released security patches on Tuesday to address vRealize Log Insight vulnerabilities that could enable attackers to gain remote execution on unpatched appliances.
vRealize Log Insight is a log analysis and management tool that helps analyze terabytes of infrastructure and application logs in VMware environments.
The company said the vulnerabilities were addressed with VMware vRealize Log Insight 8.10.2.
VMware provides detailed instructions on upgrading to the latest version of vRealize Log Insight here.
To apply the workaround, log into each vRealize Log Insight node in your cluster as root via SSH and execute a script.
Hackers exploit critical VMware RCE flaw to install backdoors.
News URL
Related news
- Don't Overlook These 6 Critical Okta Security Configurations (source)
- 89% of Enterprise GenAI Usage Is Invisible to Organizations Exposing Critical Security Risks, New Report Reveals (source)
- VMware Security Flaws Exploited in the Wild—Broadcom Releases Urgent Patches (source)
- Stealthy Apache Tomcat Critical Exploit Bypasses Security Filters: Are You at Risk? (source)
- New Security Flaws Found in VMware Tools and CrushFTP — High Risk, PoC Released (source)
- Still Using an Older Version of iOS or iPadOS? Update Now to Patch These Critical Security Vulnerabilities (source)