VMware Issues Security Patches for High-Severity Flaws Affecting Multiple Products
Advancing Product Labels to Help Consumers Consider Cybersecurity
February 17, 2022Texas RE Align Release 3 Training Opportunity
February 17, 2022
Summary:
VMware has issued an urgent patch for critical vulnerabilities in their ESXi, Workstation, Fusion, Cloud Foundation, and NSX Data Center for vSphere products. The vulnerabilities are not observed to be exploited in the wild, but could be exploited to execute arbitrary code and cause a denial-of-service (DoS) condition.
Additional Discussion:
Successful exploitation of the flaws could allow a malicious actor with local administrative privileges on a virtual machine to execute code as the virtual machine's VMX process running on the host. It could also allow the adversary with access to settings to escalate their privileges by writing arbitrary files.
Additionally, CVE-2021-22050 could be weaponized by an adversary with network access to ESXi to create a DoS condition by overwhelming rhttpproxy service with multiple requests. Last but not least, CVE-2022-22945 could permit an attacker with SSH access to an NSX-Edge appliance (NSX-V) to run arbitrary commands on the operating system as root user.
Summary:
VMware has issued an urgent patch for critical vulnerabilities in their ESXi, Workstation, Fusion, Cloud Foundation, and NSX Data Center for vSphere products. The vulnerabilities are not observed to be exploited in the wild. But could be exploited to execute arbitrary code and cause a denial-of-service (DoS) condition.Additional Discussion:
Successful exploitation of the flaws could allow a malicious actor with local administrative privileges on a virtual machine to execute code as the virtual machine\’s VMX process running on the host. It could also allow the adversary with access to settings to escalate their privileges by writing arbitrary files.
Additionally, CVE-2021-22050 could be weaponized by an adversary with network access to ESXi to create a DoS condition by overwhelming rhttpproxy service with multiple requests. Last but not least, CVE-2022-22945 could permit an attacker with SSH access to an NSX-Edge appliance (NSX-V) to run arbitrary commands on the operating system as root user.
Link
https://thehackernews.com/2022/02/vmware-issues-security-patches-for-high.html
justify
justify
no-repeat;left top;;
auto
