ZDNet

Patch immediately: VMware warns of critical remote code execution hole in vCenter

VMware is urging its vCenter users to update vCenter Server versions 6.5, 6.7, and 7.0 immediately, after a pair of vulnerabilities were reported privately to the company. The most pressing is ...
TechRadar

A major VMware vCenter Server security bug is now being exploited, so patch now

A VMware bug that grants Remote Code Execution abilities is being exploited in the wild The bug was first spotted in September 2024, but the patch did not solve the problem A second patch was released ...
Bleeping Computer

VMware vCenter Server bug disclosed last year still not patched

VMware informed customers today that vCenter Server 8.0 (the latest version) is still waiting for a patch to address a high-severity privilege escalation vulnerability disclosed in November 2021. This ...
Computer Weekly

Threat actors target VMware vCenter Server users

VMware has released a series of patches addressing various vulnerabilities in its vCenter Server products (versions 6.5, 6.7 and 7.0) which should be applied immediately, as the ramifications for ...
heise online

VMware vCenter: Patch ineffective, new update necessary

Broadcom has released updates for VMware vCenter Server that close a critical and a high-risk vulnerability. This is the second attempt to seal the vulnerabilities. Broadcom had already published the ...
ZDNet

RCE is back: VMware details file upload vulnerability in vCenter Server

If you haven't patched vCenter in recent months, please do so at your earliest convenience. Following on from its remote code execution hole in vCentre in May, VMware has warned of a critical ...
Dark Reading

Thousands of VMware vCenter Servers Remain Open to Attack Over the Internet

Thousands of instances of VMware vCenter Servers with two recently disclosed vulnerabilities in them remain publicly accessible on the Internet three weeks after the company urged organizations to ...