Security News > 2024 > June > VMware fixes critical vCenter RCE vulnerability, patch now
VMware has issued a security advisory addressing critical vulnerabilities in vCenter Server, including remote code execution and local privilege escalation flaws.
VMware vCenter Server is a central management platform for VMware vSphere, enabling the management of virtual machines and ESXi hosts.
CVE-2024-37079: A heap-overflow vulnerability in the DCERPC protocol implementation of vCenter Server that allows a malicious actor with network access to send specially crafted packets, potentially leading to remote code execution.
CVE-2024-37080: Another heap overflow vulnerability in the DCERPC protocol of vCenter Server.
CVE-2024-37081: This vulnerability arises from a misconfiguration of sudo in vCenter Server, permitting an authenticated local user to exploit this flaw to elevate their privileges to root on the vCenter Server Appliance.
The above flaws impact VMware vCenter Server versions 7.0 and 8.0 and VMware Cloud Foundation versions 4.x and 5.x. Security updates were made available in VMware vCenter Server 8.0 U2d, 8.0 U1e, and 7.0 U3r.
News URL
Related news
- Critical Git vulnerability allows RCE when cloning repositories with submodules (CVE-2024-32002) (source)
- VMware by Broadcom warns of two critical vCenter flaws, plus a nasty sudo bug (source)
- Critical RCE flaws in vCenter Server fixed (CVE-2024-37079, CVE-2024-37080) (source)
- Week in review: CDK Global cyberattack, critical vCenter Server RCE fixed (source)
- Critical RCE Vulnerability Discovered in Ollama AI Infrastructure Tool (source)
- Over 50,000 Tinyproxy servers vulnerable to critical RCE flaw (source)
- Chrome Zero-Day Alert — Update Your Browser to Patch New Vulnerability (source)
- Week in review: Veeam fixes RCE flaw in backup management platform, Patch Tuesday forecast (source)
- TP-Link fixes critical RCE bug in popular C5400X gaming router (source)
- Exploit released for maximum severity Fortinet RCE bug, patch now (source)