A Konica Minolta Company
Posted by Matt Weber - June 30, 2023 - Vulnerability, VMware
VMware has announced several vulnerabilities within vCenter Server that range from medium to high severity. The disclosed vulnerabilities have varying impacts that could allow a malicious threat actor with network access to execute arbitrary code, cause memory corruption, or bypass authentication on vCenter. Specifics of the vulnerabilities can be found here, and below is a brief description of those with high severity:
CVE-2023-20892: VMware vCenter Server heap-overflow vulnerability
CVE-2023-20893: VMware vCenter Server use-after-free vulnerability
CVE-2023-20894: VMware vCenter Server out-of-bounds write vulnerability
CVE-2023-20895: VMware vCenter Server out-of-bounds read vulnerability
It is recommended to update affected vCenter Server instances. If you utilize VMware vCenter Server within your environment and would like assistance with assessing exposure or best go forward plan, please reach out to your SymQuest Account Executive.
by Eric Bronson - September 12, 2023
Veeam has announced a vulnerability within multiple products with a high severity. The disclosed vulnerability could allow a malicious,...
by Matt Weber - May 19, 2023
Cisco has announced multiple vulnerabilities for their Cisco Small Business Switch Series, three of which are flagged as critical. The disclosed...
by Matt Weber - July 25, 2022
Cisco announced several critical vulnerabilities for the Cisco Nexus Dashboard that could allow a remote unauthenticated attacker to run arbitrary...
Stay in the know and receive a notification right to your inbox when a security message is posted.
Subscribe