Here is quick and small blog over a particular security vulnerabilitie, what is discoverd in de Apache’s Log4j Java Libary. There a multiple VMWare products what use the Apache Technology.
The CVE rating this vulnerabilitie is a 10 so the max score you can get.
The Advisory ID from VMware is VMSA-2021-0028 and here is the link to it.