Security News

Cybersecurity news aggregator

🔓
CRITICAL Vulnerabilities HKCERT

VMWare Products Multiple Vulnerabilities

vmware-vcentercve-2024-37079code-injectionmitre-ta0004mitre-ta0001
Multiple vulnerabilities have been identified in VMware vCenter Server and Cloud Foundation, including CVE-2024-37079 which is being actively exploited. A remote attacker could exploit these vulnerabilities to achieve remote code execution or elevate privileges on affected systems, so immediate patching is critical.
Read Full Article →

Multiple vulnerabilities were identified in VMware products. A remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege and remote code execution on the targeted system. Note: CVE-2024-37079 is actively exploited in the wild. A malicious actor with... Impact Remote Code Execution Elevation of Privilege System / Technologies affected VMware vCenter Server 7.0 VMware vCenter Server 8.0 VMware Cloud Foundation 4.x VMware Cloud Foundation 5.x Solutions Before installation of the software, please visit the vendor web-site for more details. Apply fixes issued by the vendor: https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24453

Related Articles

CRITICAL CISA Adds Actively Exploited VMware vCenter Flaw CVE-2024-37079 to KEV Catalog The Hacker News CRITICAL Patch or die: VMware vCenter Server bug fixed in 2024 under attack today The Register Security HIGH CISA: VMware ESXi flaw now exploited in ransomware attacks BleepingComputer CRITICAL January 2026 CVE Landscape: 23 Critical Vulnerabilities Mark 5% Increase, APT28 Exploits Microsoft Office Zero-Day Recorded Future
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn