VMware

VMware fixed three actively exploited zero-days in ESX productsVMware fixed three actively exploited zero-days in ESX products

VMware fixed three actively exploited zero-days in ESX products

Broadcom has addressed three VMware zero-day vulnerabilities in ESX products that are actively exploited in the wild. Broadcom released security…

3 months ago
VMware fixed a flaw in Avi Load BalancerVMware fixed a flaw in Avi Load Balancer

VMware fixed a flaw in Avi Load Balancer

VMware fixed a high-risk blind SQL injection vulnerability in Avi Load Balancer, allowing attackers to exploit databases via crafted queries.…

4 months ago
VMware fixed five vulnerabilities in Aria Operations productVMware fixed five vulnerabilities in Aria Operations product

VMware fixed five vulnerabilities in Aria Operations product

Virtualization giant VMware addressed multiple vulnerabilities in its Aria Operations product that can led to privilege escalation and XSS attacks.…

6 months ago
Recently disclosed VMware vCenter Server bugs are actively exploited in attacksRecently disclosed VMware vCenter Server bugs are actively exploited in attacks

Recently disclosed VMware vCenter Server bugs are actively exploited in attacks

Threat actors are actively exploiting two VMware vCenter Server vulnerabilities tracked as CVE-2024-38812 and CVE-2024-38813, Broadcom warns. Broadcom warns that…

6 months ago
VMware failed to fully address vCenter Server RCE flaw CVE-2024-38812VMware failed to fully address vCenter Server RCE flaw CVE-2024-38812

VMware failed to fully address vCenter Server RCE flaw CVE-2024-38812

VMware addressed a remote code execution flaw, demonstrated in a Chinese hacking contest, for the second time in two months.…

7 months ago
VMware fixed a code execution flaw in Fusion hypervisorVMware fixed a code execution flaw in Fusion hypervisor

VMware fixed a code execution flaw in Fusion hypervisor

VMware released a patch to address a high-severity code execution flaw in its Fusion hypervisor, users are urged to apply…

9 months ago
VMware fixed critical SQL-Injection in Aria Automation productVMware fixed critical SQL-Injection in Aria Automation product

VMware fixed critical SQL-Injection in Aria Automation product

VMware addressed a critical SQL-Injection vulnerability, tracked as CVE-2024-22280, impacting Aria Automation. Virtualization giant VMware addressed a high-severity SQL-injection vulnerability,…

11 months ago
VMware fixed RCE and privilege escalation bugs in vCenter ServerVMware fixed RCE and privilege escalation bugs in vCenter Server

VMware fixed RCE and privilege escalation bugs in vCenter Server

VMware addressed vCenter Server vulnerabilities that can allow remote code execution or privilege escalation. VMware addressed multiple vCenter Server vulnerabilities…

11 months ago
MITRE December 2023 attack: Threat actors created rogue VMs to evade detectionMITRE December 2023 attack: Threat actors created rogue VMs to evade detection

MITRE December 2023 attack: Threat actors created rogue VMs to evade detection

The MITRE Corporation revealed that threat actors behind the December 2023 attacks created rogue virtual machines (VMs) within its environment.…

1 year ago
VMware fixed zero-day flaws demonstrated at Pwn2Own Vancouver 2024VMware fixed zero-day flaws demonstrated at Pwn2Own Vancouver 2024

VMware fixed zero-day flaws demonstrated at Pwn2Own Vancouver 2024

VMware fixed four flaws in its Workstation and Fusion desktop hypervisors, including three zero-days exploited at the Pwn2Own Vancouver 2024…

1 year ago