VMware has released security updates and workarounds to address critical remote code execution vulnerability (CVE-2022-22965) in the VMware Tanzu Application Service for Vms, VMware Tanzu Operations Manager, VMware Tanzu Kubernetes Grid Integrated Edition (TKGI) products, exploitation of this flaw could allow a malicious actor to gain full control of the target system.

VMware advises customers to apply updates.

More information on vulnerability and updates is available in VMware security advisory – VMSA-2022-0010.