vCenter 7.0 workaround for #CVE-2021-44228

mitigate.sh

cp /usr/lib/vmware-vmon/java-wrapper-vmon /usr/lib/vmware-vmon/java-wrapper-vmon.bak
cp /usr/lib/vmware-updatemgr/bin/jetty/start.ini /usr/lib/vmware-updatemgr/bin/jetty/start.ini.bak
cp /usr/lib/vmware/common-jars/log4j-core-2.8.2.jar /usr/lib/vmware/common-jars/log4j-core-2.8.2.jar.bak
cp /usr/lib/vmware-dbcc/lib/log4j-core-2.8.2.jar /usr/lib/vmware-dbcc/lib/log4j-core-2.8.2.jar.bak

zip -q -d /usr/lib/vmware-dbcc/lib/log4j-core-2.8.2.jar org/apache/logging/log4j/core/lookup/JndiLookup.class
zip -q -d /usr/lib/vmware/common-jars/log4j-core-2.8.2.jar org/apache/logging/log4j/core/lookup/JndiLookup.class

sed -i 's/exec $java_start_bin $jvm_dynargs $security_dynargs $original_args/log4j_arg="-Dlog4j2.formatMsgNoLookups=true"\nexec $java_start_bin $jvm_dynargs $log4j_arg $security_dynargs $original_args/g' /usr/lib/vmware-vmon/java-wrapper-vmon
sed -i 's/exec $java_start_bin $jvm_dynargs "$@"/log4j_arg="-Dlog4j2.formatMsgNoLookups=true"\nexec $java_start_bin $jvm_dynargs $log4j_arg "$@"/g' /usr/lib/vmware-vmon/java-wrapper-vmon
echo "-Dlog4j2.formatMsgNoLookups=true" >> /usr/lib/vmware-updatemgr/bin/jetty/start.ini

service-control --stop --all
service-control --start --all
service-control --restart vmware-analytics
service-control --restart vmware-updatemgr

• Login to your vCenter 7.0 Appliance as root.
• type: shell
• wget https://gist.githubusercontent.com/CyberLine/962046373ae304c5dd8a340617cca707/raw/5e151f48b3db177d018c5278a6e6f0159a97959f/mitigate.sh
• bash mitigate.sh

Source: https://kb.vmware.com/s/article/87081