VMware patches critical product vulnerabilities

In order to address significant security flaws in the VMware Aria Operations for Logs (previously vRealize Log Insight) product line, VMware has urgently published updates. The company has also issued a warning about the possibility of pre-authentication remote root attacks. The VMware Aria Operations for Logs package contains two distinct vulnerabilities, CVE-2023-20864 and CVE-2023-20865, which are documented in a critical-level advisory from VMware. The warning also offers recommendations to help businesses avoid the problems.