VMware Patches Code Execution Vulnerability in vCenter Server

VMware published remedies for a vCenter Server vulnerability that may lead to arbitrary code execution on Thursday. The vCenter Server is a centralised administration application that is used to govern virtual machines and ESXi hosts, as well as their dependent components. The security flaw, identified as CVE-2022-31680 (CVSS score of 7.2), is defined as an unsafe deserialization vulnerability in the platform services controller (PSC).According to the company’s alert, a hostile actor with admin access to the vCenter server might exploit this flaw to execute arbitrary code on the underlying operating system that runs the vCenter Server. Read More…