Tag: vCenter Server
-
Alerts: CISA Adds Two Known Exploited Vulnerabilities to Catalog
Source URL: https://www.cisa.gov/news-events/alerts/2024/11/20/cisa-adds-two-known-exploited-vulnerabilities-catalog Source: Alerts Title: CISA Adds Two Known Exploited Vulnerabilities to Catalog Feedly Summary: CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-38812 VMware vCenter Server Heap-Based Buffer Overflow Vulnerability CVE-2024-38813 VMware vCenter Server Privilege Escalation Vulnerability These types of vulnerabilities are frequent attack vectors…
-
The Register: Critical 9.8-rated VMware vCenter RCE bug exploited after patch fumble
Source URL: https://www.theregister.com/2024/11/18/vmware_vcenter_rce_exploited/ Source: The Register Title: Critical 9.8-rated VMware vCenter RCE bug exploited after patch fumble Feedly Summary: If you didn’t fix this a month ago, your to-do list probably needs a reshuffle Two VMware vCenter server bugs, including a critical heap-overflow vulnerability that leads to remote code execution (RCE), have been exploited in…
-
The Register: VMware fixes critical RCE, make-me-root bugs in vCenter – for the second time
Source URL: https://www.theregister.com/2024/10/22/vmware_rce_vcenter_bugs/ Source: The Register Title: VMware fixes critical RCE, make-me-root bugs in vCenter – for the second time Feedly Summary: If the first patches don’t work, try, try again VMware has pushed a second patch for a critical, heap-overflow bug in the vCenter Server that could allow a remote attacker to fully compromise vulnerable…
-
Alerts: VMware Releases Security Advisory for VMware Cloud Foundation and vCenter Server
Source URL: https://www.cisa.gov/news-events/alerts/2024/09/19/vmware-releases-security-advisory-vmware-cloud-foundation-and-vcenter-server Source: Alerts Title: VMware Releases Security Advisory for VMware Cloud Foundation and vCenter Server Feedly Summary: VMware released a security advisory addressing vulnerabilities in the VMware Cloud Foundation and the vCenter Server. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system. CISA encourages users…
-
The Register: VMware patches over remote make-me-root holes in vCenter Server, Cloud Foundation
Source URL: https://www.theregister.com/2024/09/17/vmware_vcenter_patch/ Source: The Register Title: VMware patches over remote make-me-root holes in vCenter Server, Cloud Foundation Feedly Summary: Bug reports made in China Broadcom has emitted a pair of patches for vulnerabilities in VMware vCenter Server that a miscreant with network access to the software could exploit to completely commandeer a system. This…