Critical Security patch for vCenter 6.7
If you have upgraded your vCenter from earlier versions of vCenter, then you should patch your vCenter.
This security bug is rated 10.0 out of 10.0.
A malicious actor with network access to an affected vmdir deployment may be able to extract highly sensitive information which could be used to compromise vCenter Server or other services which are dependent upon vmdir for authentication.
See the release notes here.