Organizations using VMware’s vCenter Server that haven’t yet applied a patch for a recently disclosed arbitrary file upload vulnerability in the management utility (CVE-2021-22005) are at heightened risk of compromise. The US Cybersecurity & Infrastructure Security Agency (CISA) on Friday warned organizations to expect “widespread exploitation”
Read full article on Dark Reading: Cloud