Bleeping Computer

VMware patches vCenter Server flaw disclosed in November

Eight months after disclosing a high-severity privilege escalation flaw in vCenter Server's IWA (Integrated Windows Authentication) mechanism, VMware has finally released a patch for one of the ...
ZDNet

Patch now: Attackers are hunting for this critical VMware vCentre flaw

The US Cybersecurity and Infrastructure Security Agency has warned companies running VMware vCenter Server and VMware Cloud Foundation software to update as soon as possible because attackers are ...
Threat Post

VMware Warns of Ransomware-Friendly Bug in vCenter Server

UPDATE: Malicious actors are already scanning honeypots, looking for servers vulnerable to the critical arbitrary file upload flaw in vCenter servers’ Analytics service. VMware has released a security ...
Bleeping Computer

Latest vCenter Server news

Broadcom warned today that attackers are now exploiting two VMware vCenter Server vulnerabilities, one of which is a critical remote code execution flaw. Broadcom has fixed a critical VMware vCenter ...
CSOonline

Chinese cyberspies exploited critical VMware vCenter flaw undetected for 1.5 years

In October, VMware fixed a critical remote code execution vulnerability in its vCenter Server (CVE-2023-34048) and Cloud Foundation enterprise products that are used to manage virtual machines across ...