Security News > 2024 > September > Patch Issued for Critical VMware vCenter Flaw Allowing Remote Code Execution
2024-09-18 05:08
Broadcom on Tuesday released updates to address a critical security flaw impacting VMware vCenter Server that could pave the way for remote code execution. The vulnerability, tracked as CVE-2024-38812 (CVSS score: 9.8), has been described as a heap-overflow vulnerability in the DCE/RPC protocol. "A malicious actor with network access to vCenter Server may trigger this vulnerability by sending a
News URL
https://thehackernews.com/2024/09/patch-issued-for-critical-vmware.html
Related news
- Critical WPML Plugin Flaw Exposes WordPress Sites to Remote Code Execution (source)
- Apache fixes critical OFBiz remote code execution vulnerability (source)
- Broadcom fixes critical RCE bug in VMware vCenter Server (source)
- VMware patches remote make-me-root holes in vCenter Server, Cloud Foundation (source)
- Critical VMware vCenter Server bugs fixed (CVE-2024-38812) (source)
- Week in review: Critical VMware vCenter Server bugs fixed, Apple releases iOS 18 (source)
- Critical Flaw in Microchip ASF Exposes IoT Devices to Remote Code Execution Risk (source)
- New Zero-Day Flaw in Apache OFBiz ERP Allows Remote Code Execution (source)
- Critical Security Flaw in WhatsUp Gold Under Active Attack - Patch Now (source)
- Critical SAP flaw allows remote attackers to bypass authentication (source)