VMware has released an update for its VMware Aria Operations for Logs, previously known as vRealize Log Insights, to address a pair of vulnerabilities. The flaws, a deserialization vulnerability and a command injection vulnerability, could be exploited to execute arbitrary code as root. Ref here https://www.vmware.com/security/advisories/VMSA-2023-0007.html