Description
Due to vulnerabilities in Log4j library used by vCenter, an unauthenticated attacker can leak sensitive information or execute arbitrary code on the system.
Remediation
Upgrade to the latest version of VMware vCenter
References
Related Vulnerabilities
WordPress Plugin ShareYourCart Information Disclosure (1.6.1)
WordPress Plugin W3 Total Cache PHP Code Injection (0.9.2.8)
RCE in Ivanti Connect Secure and Policy Secure (CVE-2024-21887)
WordPress Plugin WP Import Export Lite Information Disclosure (3.9.15)
WordPress Plugin WordPress WP-Advanced-Search Remote Code Execution (3.3.3)