VMware has released security updates to address a critical severity vulnerability in vRealize Business for Cloud that enables unauthenticated attackers to remotely execute malicious code on vulnerable servers.

The security vulnerability is tracked as CVE-2021-21984, and it impacts virtual appliances running VMware vRealize Business for Cloud prior to version 7.6.0.

"VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8."

VMware has released VMware vRealize Business for Cloud 7.6.0 to patch this security issue.

More information on vulnerability and update is available in Vmware security advisory – vmware.com.

Source: bleepingcomputer.com