Bleeping Computer

VMware vCenter Server bug disclosed last year still not patched

VMware informed customers today that vCenter Server 8.0 (the latest version) is still waiting for a patch to address a high-severity privilege escalation vulnerability disclosed in November 2021. This ...
TechRadar

A major VMware vCenter Server security bug is now being exploited, so patch now

A VMware bug that grants Remote Code Execution abilities is being exploited in the wild The bug was first spotted in September 2024, but the patch did not solve the problem A second patch was released ...
Threat Post

VMware Warns of Ransomware-Friendly Bug in vCenter Server

UPDATE: Malicious actors are already scanning honeypots, looking for servers vulnerable to the critical arbitrary file upload flaw in vCenter servers’ Analytics service. VMware has released a security ...
heise online

VMware vCenter: Attackers from the network can infiltrate malicious code

Broadcom plugs several security holes in VMware vCenter. In the worst case, attackers can smuggle in and execute malicious code from the network. VMware vCenter Server 8.0 and 7.0 as well as VMware ...
heise online

VMware vCenter: Patch ineffective, new update necessary

Broadcom has released updates for VMware vCenter Server that close a critical and a high-risk vulnerability. This is the second attempt to seal the vulnerabilities. Broadcom had already published the ...
ZDNet

RCE is back: VMware details file upload vulnerability in vCenter Server

If you haven't patched vCenter in recent months, please do so at your earliest convenience. Following on from its remote code execution hole in vCentre in May, VMware has warned of a critical ...