VMware customers have probably had a busy week because more than 100 of the IT giant’s products are impacted by the Log4j bug.
Now they need to make another urgent patching effort, because the virty giant has identified another critical flaw in its products that it rates as requiring urgent attention.
Security advisory VMSA-2021-0029, which pertains CVE-2021-22054, describes a server-side forgery request in VMware’s Workspace ONE Unified Endpoint Management (UEM) product.
The flaw is rated 9.1 out of 10 on the Common Vulnerability Scoring System, meaning you ignore it at your peril.