Security News

VMware warns of critical remote code execution flaw in vSphere HTML5 client
2021-02-23 23:35

VMware has revealed a critical-rated bug in the HTML5 client for its flagship vSphere hybrid cloud suite. "The vSphere Client contains a remote code execution vulnerability in a vCenter Server plugin," says VMware's notification.

Vulnerability in VMware vSphere Replication Can Facilitate Attacks on Enterprises
2021-02-15 11:59

VMware last week informed customers about the availability of patches for a potentially serious vulnerability affecting its vSphere Replication product. vSphere Replication, a VMware vSphere component, is a virtual machine replication engine designed for data protection and disaster recovery.

VMware vSphere 7: Enabling enterprises to deliver elastic infrastructure for AI and ML apps
2020-06-03 03:00

VMware introduced a new integrated feature in VMware vSphere 7 that will enable enterprises to deliver elastic infrastructure on-demand for artificial intelligence and machine learning applications. With the newly integrated Bitfusion capabilities, VMware vSphere 7 will enable enterprises to pool their powerful GPU resources on their servers and share them within their data centers.

If you're using Dell EMC Avamar, even in VMware's vSphere, you need to grab and install these security updates
2018-11-21 06:11

Unless you want your private key to leak, watch miscreants inject commands, etc Get patching: data protection offerings in the Dell EMC Avamar range have four exploitable security bugs – one...

VMware Patches Critical Flaws in vSphere Data Protection
2018-01-03 13:12

VMware has patched three critical vulnerabilities in vSphere Data Protection (VDP), including arbitrary file upload, authentication bypass and path traversal issues. read more

VMware Issues 3 Critical Patches for vSphere Data Protection
2018-01-02 21:03

VMware released three patches fixing critical vulnerabilities affecting its vSphere cloud computing virtualization platform.

VMware API Allows Limited vSphere Users to Access Guest OS (Security Week)
2017-07-28 14:30

LAS VEGAS - BLACK HAT USA - Researchers discovered that a VMware API can be abused by vSphere users with limited privileges to access the guest operating system without authentication. VMware has...

VMware Patches Flaws in Horizon, vSphere Products (Security Week)
2017-06-09 08:19

Updates released by VMware this week for its Horizon View Client and vSphere Data Protection (VDP) products address a total of three critical and important vulnerabilities. read more

VMware Patches Critical Vulnerabilities in vSphere Data Protection (Threatpost)
2017-06-08 16:12

VMware fixed two critical vulnerabilities in its vSphere Data Protection solution this week that could have allowed an attacker to execute commands on the appliance, among other outcomes.