Zero-Day in a Vmware product leads to unauthenticated remote code execution via Web interface.
Vmware is aware about the bug and is patching.
There is no patch to the Zero-Day. However, workarounds include use of WAF and disabling features.
https://t.me/cKure/11024