Security News > 2023 > July > VMware warns of exploit available for critical vRealize RCE bug
VMware warned customers today that exploit code is now available for a critical vulnerability in the VMware Aria Operations for Logs analysis tool, which helps admins manage terabytes worth of app and infrastructure logs in large-scale environments.
Recently, VMware issued another alert about a now-patched critical bug in VMware Aria Operations for Networks, allowing remote command execution as the root user and being actively exploited in attacks.
Although the number of online-exposed VMware vRealize instances is relatively low, it aligns with the intended design of these appliances, which primarily focus on internal network access within organizations.
VMware warns of critical vRealize flaw exploited in attacks.
VMware fixes critical vulnerabilities in vRealize network analytics tool.
Exploit released for MOVEit RCE bug used in data theft attacks.
News URL
Related news
- Exploit released for critical WhatsUp Gold RCE flaw, patch now (source)
- PoC exploit for critical WhatsUp Gold RCE vulnerability released (CVE-2024-8785) (source)
- Hackers exploit critical Aviatrix Controller RCE flaw in attacks (source)
- Veeam warns of critical RCE bug in Service Provider Console (source)
- Veeam Issues Patch for Critical RCE Vulnerability in Service Provider Console (source)
- Apache issues patches for critical Struts 2 RCE bug (source)
- Critical security hole in Apache Struts under exploit (source)
- Fortinet Warns of Critical FortiWLM Flaw That Could Lead to Admin Access Exploits (source)
- Adobe warns of critical ColdFusion bug with PoC exploit code (source)
- Mitel 0-day, 5-year-old Oracle RCE bug under active exploit (source)