31
Jan
The VMware patch for vRealize is available now, and system administrators should update the software as soon as possible. Ensuring that vRealize is not exposed to the internet is also an important factor to consider. Below are the version details for the software patch:
• VMware vRealize Log Insight
◦ Fixed version: 8.10.2
• VMware Cloud Foundation (VMware vRealize Log Insight)
◦ Fixed Version: KB90668
IOCs for potential exploitation of this vulnerability can be found here: https://www.horizon3.ai/vmware-vrealize-cve-2022-31706-iocs/
https://www.bleepingcomputer.com/news/security/researchers-to-release-vmware-vrealize-log-rce-exploit-patch-now/
