VMware urges customers to patch a critical remote code execution (RCE) vulnerability in the Virtual SAN Health Check plug-in and impacting all vCenter Server deployments. "These updates fix a critical ...

VMware vSphere 4, out today, is a big release, with plenty of new features and changes, but it’s not your run-of-the-mill major update. The new features, which range from VM clustering to agentless VM ...

Eight months after disclosing a high-severity privilege escalation flaw in vCenter Server's IWA (Integrated Windows Authentication) mechanism, VMware has finally released a patch for one of the ...

UPDATE: Malicious actors are already scanning honeypots, looking for servers vulnerable to the critical arbitrary file upload flaw in vCenter servers’ Analytics service. VMware has released a security ...

In response to a VMware user group security survey conducted earlier this year, VMware said it would consider certain initiatives aimed at increasing awareness of security updates to its customers and ...

‘[The] Log4j2 vulnerability appears … for Conti at the moment when the syndicate has both the strategic intention and the capability to weaponize it for its ransomware goals,’ says AdvIntel in a ...

The first security flaw, CVE-2021-21985, impacts VMware vCenter Server and VMware Cloud Foundation and has been issued a CVSS score of 9.8. This bug was found in a vSAN plugin, enabled by default in ...

VMware has released a series of patches addressing various vulnerabilities in its vCenter Server products (versions 6.5, 6.7 and 7.0) which should be applied immediately, as the ramifications for ...

Hackers are mass-scanning the Internet in search of VMware servers with a newly disclosed code-execution vulnerability that has a severity rating of 9.8 out of a possible 10. “We’ve detected mass ...

Data centers around the world have a new concern to contend with—a remote code vulnerability in a widely used VMware product. A VMware advisory said that vCenter machines using default configurations ...