VMware has fixed a critical vulnerability (CVE-2023-20858) in Carbon Black App Control, its enterprise solution for preventing untrusted software from executing on critical systems and endpoints. Even though the flaw has been privately reported to VMware, and there is no mention of it being actively exploited, admins are urged to upgrade to a fixed version as soon as possible. About CVE-2023-20858 To exploit CVE-2023-20858 – an injection vulnerability that could allow a malicious actor to … More
The post VMware patches critical injection flaw in Carbon Black App Control (CVE-2023-20858) appeared first on Help Net Security.