Security News > 2024 > June > VMware Issues Patches for Cloud Foundation, vCenter Server, and vSphere ESXi

VMware Issues Patches for Cloud Foundation, vCenter Server, and vSphere ESXi
2024-06-18 08:24

VMware has released updates to address critical flaws impacting Cloud Foundation, vCenter Server, and vSphere ESXi that could be exploited to achieve privilege escalation and remote code execution. The list of vulnerabilities is as follows - CVE-2024-37079 & CVE-2024-37080 (CVSS scores: 9.8) - Multiple heap-overflow vulnerabilities in the implementation of the DCE/RPC protocol that could


News URL

https://thehackernews.com/2024/06/vmware-issues-patches-for-cloud.html

Related news

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2024-06-18 CVE-2024-37080 Out-of-bounds Write vulnerability in VMWare Vcenter Server 7.0/8.0
vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol.
network
low complexity
vmware CWE-787
critical
 9.8
9.8
2024-06-18 CVE-2024-37079 Out-of-bounds Write vulnerability in VMWare Vcenter Server 7.0/8.0
vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol.
network
low complexity
vmware CWE-787
critical
 9.8
9.8

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Vmware 146 11 222 256 102 591