Zero-day reported by the NSA
https://www.bleepingcomputer.com/news/security/vmware-fixes-zero-day-vulnerability-reported-by-the-nsa/
VMware has released security updates to address a zero-day vulnerability in VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector.
The vulnerability is a command injection bug tracked as CVE-2020-4006 and publicly disclosed two weeks ago.