There is a particularly nasty exploit going around the will according to an article on Ars Technica, install a “witch’s brew of malware” on vulnerable systems:
VMware bug with 9.8 severity rating exploited to install witch’s brew of malware | Ars Technica
The patch for CVE-2022-22954 is out, just get it done now.
My advice: Either you or your IT support need to check whether these issues impact your systems. You need to have a master document that details your systems, hardware, software, online, networks, back-ups, suppliers etc – so when cyber security (or operational) issues arise you and your support teams can quickly check if you are affected. From there you can take fast, effective action.