Skip to main content

VMWare Products Multiple Vulnerabilities

Last Update Date: 7 Jun 2021 Release Date: 26 May 2021 6771 Views

RISK: High Risk

TYPE: Operating Systems - VM Ware

TYPE: VM Ware

Multiple vulnerabilities were identified in VMware products, a remote attacker could exploit some of these vulnerabilities to trigger remote code execution on the targeted system.

 

[Updated 07-June-2021] CVE-2021-21985 is being exploited in the wild. Risk level has been escalated to high risk.


Impact

  • Remote Code Execution

System / Technologies affected

  • vCenter Server 7.0
  • vCenter Server 6.7
  • vCenter Server 6.5
  • Cloud Foundation (vCenter Server) 4.x
  • Cloud Foundation (vCenter Server) 3.x

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

  • vCenter Server 7.0 U2b
  • vCenter Server 6.7 U3n
  • vCenter Server 6.5 U3p
  • Cloud Foundation (vCenter Server) 4.2.1
  • Cloud Foundation (vCenter Server) 3.10.2.1

Vulnerability Identifier


Source


Related Link

https://www.vmware.com/security/advisories/VMSA-2021-0010.html