VMware vCenter Under Widespread Attack – Security



A number of vulnerabilities in the company’s virtualization management platform VMware vCenter and the company’s Cloud Foundation are currently under active attack, with users urged to patch their instances as soon as possible.

The bugs allow code to be executed remotely, with the proof of concept code for one of them now released on social media using built-in UNIX shell tools for exploitation.

Other proof-of-concept code is shown for the other VMware vulnerabilities, but researchers are reluctant to publish full details so administrators can patch their installations first.

Security researchers have identified attempts at mass exploitation.

VMWare has accepted the numerous critical vulnerabilities in its vCenter Server and Cloud Foundation products and advises customers to act immediately to correct the errors as this can have serious consequences.

The company has also confirmed that the vulnerabilities are currently being exploited in the wild.

Updates are available from VMware, who fix the vulnerabilities, the most serious of which is a vCenter file upload error, which is rated 9.8 out of 10 severity levels on the Common Vulnerabilities and Exposures (CVE) list. The error allows remote code execution.



About Author

Leave A Reply