Head Topics

VMware reveals critical vCenter vuln that you may have patched already without knowing it

  • 📰 TheRegister
  • ⏱ Reading Time:
  • 43 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 21%
  • Publisher: 61%

United Kingdom Headlines News

United Kingdom Latest News,United Kingdom Headlines

Takes rare step of issuing patches for end-of-life versions, as some staff report end-of-career letters

Oh no, you're thinking, yet another cookie pop-up. Well, sorry, it's the law. We measure how many people read us, and ensure you see relevant ads, by storing cookies on your device. If you're cool with that, hit “Accept all Cookies”. For more info and to customize your settings, hit “Customize Settings”.Here's an overview of our use of cookies, similar technologies and how to manage them.

We can't imagine VMware would require those who adopted vCenter 8.0U2 to update their servers a second time, so have asked for clarification on whether version 8.0U2 addressed the vuln on the day of release. Unusually, VMware also released patches for versions of vCenter that have reached end of life. Versions 6.5, 6.7, and 7.0 can all find fixes.

Virtzilla revealed a second CVE, too. CVE-2023-34056 means"a malicious actor with non-administrative privileges to vCenter Server may leverage this issue to access unauthorized data." This one's rated a mere 4.3 and is covered in the patches that also address the critical vuln, which was found by Grigory Dorodnov of Trend Micro Zero Day Initiative., VMware is clearly going about business as usual ahead of its acquisition by Broadcom, due to complete on or by October 30.

 

Thank you for your comment. Your comment will be published after being reviewed.
Please try again later.
We have summarized this news so that you can read it quickly. If you are interested in the news, you can read the full text here. Read more:

 /  🏆 67. in UK

United Kingdom Latest News, United Kingdom Headlines

Similar News:You can also read news stories similar to this one that we have collected from other news sources.

South Korea approves Broadcom's VMware buyVirtzilla's final releases as an indepdent company might be biggish upgrades to its desktop hypervisors
Source: TheRegister - 🏆 67. / 61 Read more »

TOWIE's Ella Rae Wise takes swipe at co-stars with cryptic post after falloutElla Rae Wise, star of The Only Way is Essex, has had her fair share of drama on the programme recently, amid a bust-up with her co-stars Junaid Ahmed and Dani Imbert
Source: OK_Magazine - 🏆 12. / 84 Read more »

Strictly's Giovanni breaks silence on Amanda Abbington's exitAmanda Abbington's exit was confirmed on It Takes Two
Source: nottslive - 🏆 96. / 52 Read more »

Chloe Madeley makes cryptic comment about ‘keeping it real’ after James Haskell takes wedding ring off...CHLOE Madeley has made a cryptic remark about “keeping it real” after her husband James Haskell was spotted without his wedding ring. The couple – who married in 2018 – have…
Source: TheSun - 🏆 64. / 61 Read more »

Carrie Underwood leads insane line-up of A-list performers at upcoming star-studded ceremonyThe Rock & Roll Hall of Fame 2023 Ceremony takes place this November
Source: hellomag - 🏆 24. / 68 Read more »

Man Utd: Suspended Man City star 'frustrated' to miss Manchester derbyThe first Manchester derby of the season takes place on Sunday.
Source: MetroUK - 🏆 13. / 82 Read more »