VMware has published updates to address the Spring4Shell remote code execution vulnerability in several VMware products. Patches are not available for all affected products; VMware has suggested workarounds. The Spring4Shell vulnerability, which resides in the Spring Core Java framework, is being actively exploited. More info https://www.vmware.com/security/advisories/VMSA-2022-0010.html