VMware fixes four serious vRealize vulnerabilities

Virtualization giant VMware has released patches for four vulnerabilities in its vRealize Log Insight product, two of which have a “Critical” severity rating.

The significant couple are CVE-2022-31703 and CVE-2022-31704. The first is a directory traversal vulnerability, while the second is a disabling access control vulnerability. Both have a severity score of 9.8, and they both allow threat actors to access resources that would otherwise be inaccessible.

Leave a Comment