VMware Issues Security Patches for High-Severity Flaws Affecting Multiple Products

VMware on Tuesday patched a number of substantial-severity vulnerabilities impacting ESXi, Workstation, Fusion, Cloud Basis, and NSX Information Centre for vSphere that could be exploited to execute arbitrary code and induce a denial-of-company (DoS) affliction.

As of composing, there is certainly no proof that any of the weaknesses are exploited in the wild. The listing of six flaws is as follows –

✔ Approved Seller From Our Partners

Protect your privacy by Mullvad VPN. Mullvad VPN is one of the famous brands in the security and privacy world. With Mullvad VPN you will not even be asked for your email address. No log policy, no data from you will be saved. Get your license key now from the official distributor of Mullvad with discount: SerialCart® (Limited Offer).

➤ Get Mullvad VPN with 12% Discount

• CVE-2021-22040 (CVSS score: 8.4) – Use-right after-cost-free vulnerability in XHCI USB controller
• CVE-2021-22041 (CVSS score: 8.4) – Double-fetch vulnerability in UHCI USB controller
• CVE-2021-22042 (CVSS rating: 8.2) – ESXi settingsd unauthorized obtain vulnerability
• CVE-2021-22043 (CVSS score: 8.2) – ESXi settingsd TOCTOU vulnerability
• CVE-2021-22050 (CVSS rating: 5.3) – ESXi sluggish HTTP Post denial-of-services vulnerability
• CVE-2022-22945 (CVSS rating: 8.8) – CLI shell injection vulnerability in the NSX Edge appliance element

Effective exploitation of the flaws could enable a malicious actor with regional administrative privileges on a virtual device to execute code as the virtual machine’s VMX approach managing on the host. It could also permit the adversary with obtain to settingsd to escalate their privileges by writing arbitrary data files.

Furthermore, CVE-2021-22050 could be weaponized by an adversary with network accessibility to ESXi to make a DoS affliction by frustrating rhttpproxy provider with many requests. Last but not least, CVE-2022-22945 could allow an attacker with SSH access to an NSX-Edge appliance (NSX-V) to run arbitrary commands on the operating procedure as root user.

Quite a few of the issues had been at first found out as component of the Tianfu Cup held past year in China, with the virtualization expert services provider operating with the contest’s organizers to assessment the conclusions and get the information and facts privately.

“The ramifications of this vulnerability are severe, primarily if attackers have obtain to workloads inside your environments,” VMware observed in a different FAQ. “Companies that observe adjust administration using the ITIL definitions of change forms would think about this an ’emergency transform.'”

Discovered this short article exciting? Follow THN on Fb, Twitter  and LinkedIn to examine far more exclusive written content we put up.