Unauthenticated Arbitrary File Read vulnerability in VMware vCenter
Description
VMware vCenter Server is an advanced server management software that provides a centralized platform for controlling VMware vSphere environments.
VMware vCenter (versions before 6.5u1) is vulnerable to an arbitrary file read vulnerability that allows an unauthenticated attacker to abuse VMware vCenter to read local system files.
Remediation
Upgrade to the latest version of VMware vCenter (this issue was fixed in version 6.5u1).