A critical security vulnerability has been discovered in the VMware vRealize Log Insight product that could allow a remote, unauthenticated user to gain access to the system. VMware recently released a patch for this vulnerability, CVE-2020-3957, which is designed to correct the security flaw. The vulnerability is classified as an RCE, or remote code execution exploit, which is the most serious type of security issue. It is believed that this vulnerability has been present in versions of vRealize Log Insight starting with version 4.0, and it affects all supported versions prior to the latest security patch.
The risk posed by this vulnerability is heightened by the fact that it can be exploited without needing to authenticate, allowing an attacker direct access to the virtual environment. The patch, however, has been released in order to mitigate any potential threats, and it is highly recommended that users of Log Insight install the update in order to secure their environment.
VMware is widely used and this vulnerability was likely to be targeted by attackers once discovered. Fortunately, it was identified quickly, and the release of the patch followed swiftly. It is imperative that users of vRealize Log Insight keep their systems up to date by patching to the latest version to ensure their overall security.
This Cyber News was published on securityaffairs.com. Publication date: Thu, 26 Jan 2023 10:39:02 +0000