VMware issues critical fixes, CISA orders federal agencies to act immediately (CVE-2022-22972)

Help Net Security

VMware has released patches for a privately reported critical vulnerability (CVE-2022-22972) in VMware’s Workspace ONE Access, VMware Identity Manager (vIDM), vRealize Lifecycle Manager, vRealize Automation, and VMware Cloud Foundation products, and is urging administrators to patch or mitigate immediately, because “the ramifications of this vulnerability are serious.” Simultaneously, the Cybersecurity and Infrastructure Security Agency (CISA) has issued an emergency directive for all federal civilian executive branch agencies, which are ordered to enumerate all instances of … More →

The post VMware issues critical fixes, CISA orders federal agencies to act immediately (CVE-2022-22972) appeared first on Help Net Security.