VMware Products Multiple Vulnerabilities
Last Update Date:
22 Dec 2016
Release Date:
21 Dec 2016
4275
Views
RISK: Medium Risk
TYPE: Operating Systems - VM Ware

Multiple vulnerabilities were identified in VMware ESXi and vSphere Data Protection. Exploitation of this vulnerability could allow a remote attacker to take control of an affected system.
Impact
- Cross-Site Scripting
- Elevation of Privilege
System / Technologies affected
- ESXi 5.5, 6.0
- vSphere Data Protection 5.5.x, 5.8.x, 6.0.x, 6.1.x
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- For ESXi, the vendor has issued a fix (ESXi550-201612102-SG, ESXi600-201611102-SG).
- For Data Protection, the vendor has issued a fix:
https://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=2147069
Vulnerability Identifier
Source
Related Link
Share with