VMware has confirmed a recently patched critical command injection vulnerability affecting its Aria Operations for Networks tool is being exploited in the wild. Tuesday’s confirmation came a week after a proof of concept (PoC) of an exploitation technique was published on GitHub and five days after researchers reported observing attempts to utilize the PoC code.

Source: SC Magazine