A security vulnerability has been discoverd in some VMware products (CVE-2017-5638).
It’s a critical vulnerability which allows remote code execution (RCE) on Apache Struts 2.
The vulnerability effects the following VMware products:
– DaaS 6.X / 7.X
– Hyperic 5.X
– vCenter 5.5 / 6.0 / 6.5
– vRops 6.X
A advise page for this vulnerability has been published by VMware and can be found below.