A serious vulnerability may affect vCenter Server 6.7 and external Platform Services Controllers (PSCs) This post is intended to help customers and partners understand the issue better. It is not intended to replace official VMSA communication. All customer environments are different and critical security issues such as this should start an immediate conversation between your organizations management, information security personnel (CISO, etc.), and IT operations. The best way to handle this issue is to patch it directly using the normal update procedures.”]
Source: https://blogs.vmware.com/vsphere/2020/04/vsphere-vmsa-2020-0006-cve-2020-3952.html