VMware fixes four critical vRealize vulnerabilities

Virtualization big VMware has released patches for 4 vulnerabilities in its vRealize Log Perception product, two of which have a “critical” severity ranking.

The critical pair are CVE-2022-31703 and CVE-2022-31704. The previous is a listing traversal vulnerability, when the latter is a damaged obtain handle vulnerability. Both equally have been specified a 9.8 severity rating, and both equally permit danger actors to accessibility resources that should really usually be inaccessible.