Hello,

I would recommend reading these articles found here related to the topic in question, including the FAQ:

https://www.vmware.com/security/advisories/VMSA-2023-0023.html
https://core.vmware.com/resource/vmsa-2023-0023-questions-answers

Also pay attention to the notes contained in the bulletin which also tell us that:

"While VMware does not mention end-of-life products in VMware Security Advisories, due to the critical severity of this vulnerability and lack of workaround VMware has made a patch generally available for vCenter Server 6.7U3, 6.5U3, and VCF 3.x. For the same reasons, VMware has made additional patches available for vCenter Server 8.0U1".

Regards,
Ferdinando