Vmware released two security advisories to address security vulnerabilities (CVE-2022-22983, CVE-2022-31672, CVE-2022-31673, CVE-2022-31674, CVE-2022-31675) in VMware Workstation and VMware vRealize Operations products. A malicious actor could exploit these vulnerabilities to trigger information disclosure, escalation of privilege and authentication bypass on affected system. The flaws have been fixed in versions VMware Workstation 16.2.4 and VMware vRealize Operations 8.6.4.

More information on vulnerabilities and updates can be found in Vmware security advisories:

• VMSA-2022-0022
• VMSA-2022-0023