The new advisory details two security vulnerabilities in vSphere Client, CVE-2014-1209 and CVE-2014-1210. In order to remediate these issues, existing vSphere clients will need to be replaced by the newly released versions.
Please sign up to the Security-Announce mailing list to receive new and updated VMware Security Advisories.
Customers should review the security advisories and direct any questions to VMware Support.
The new and updated advisories released today are not related to the OpenSSL Heartbleed issue, CVE-2014-0160. VMware is working on remediation of this issue and update releases that address this issue will be documented in a new VMware Security Advisory.
Currently VMware Knowledge Base article 2076225 provides the latest status on VMware products and services and the OpenSSL Heartbleed issue.