ITPro is reporting that a critical flaw in vCenter Server could give hackers infrastructure access.
Organizations using VMware in their infrastructure have been warned of a critical vulnerability in the analytics service of vCenter Server. This vulnerability can be used by anyone who can reach vCenter Server over the network to gain access, regardless of the configuration settings of vCenter Server.
<p><span lang=\"EN-US\">As threat actors improve on their speed in reacting to real-world vulnerabilities, it is strongly advised to act quickly in updating with the antidote to these flaws before it’s too late. Although there are no current reports on any exploitation, this can change without a moment’s notice in times of very sophisticated adversaries looking to take advantage of unpatched weaknesses. Furthermore and for extra protection, any network access to critical infrastructure should ideally only be carried out via a VPN.</span></p>