All posts in vmware
22 Dec, 2020
appeals court, Cisco systems, cyber-surveillance, Electronic Frontier Foundation, Facebook, google, Lawsuit, legal, Malware, Microsoft, mobile devices, Mobile Security, NSO Group, Pegasus, Privacy, Security News, Spyware, United States Court of Appeals for the Ninth Circuit, vmware, WhatsApp
0
Google, Microsoft, Cisco Systems and others want appeals court to deny immunity to Israeli company for its alleged distribution of spyware and illegal cyber-surveillance activities.

Feds are warning that foreign adversaries are exploiting a weeks-old bug in VMware’s Workspace One Access and VMware Identity Manager products. Active attacks against a flaw in VMware’s Workspace One Access continue, three days after the vendor patched the vulnerability and urged customers to fix the bug (classified as a . . . Read more
04 Dec, 2020
cisa alert, Command injection, critical, CVE-2020-4006, Cybersecurity, NSA, patch, privilege escalation, security advisory, Security News, security vulnerability, severity rating, vmware, Vulnerabilities, workaround, zero day
0

VMware has issued a full patch and revised the severity level of the NSA-reported vulnerability to “important.” VMware has patched a zero-day bug that was disclosed in late November – an escalation-of-privileges flaw that impacts Workspace One and other platforms, for both Windows and Linux operating systems. VMware has also . . . Read more

The critical and important-severity flaws were found by a team at the China-based Tiunfu Cup hacking challenge. VMware has hurried out fixes for a critical flaw in its ESXi hypervisor, a few weeks after it was found during China’s Tianfu Cup hacking competition. The use-after-free vulnerability (CVE-2020-4004) has a CVSS . . . Read more
04 Nov, 2020
Bug, critical flaw, CVE-2020-3992, ESXi, OpenSLP, remote code execution, Security News, use-after-free, version ESXi70U1a-17119627, vmware, Vulnerabilities, Web Security
0

A previous fix for the critical remote code execution bug was “incomplete,” according to VMware. VMware issued an updated fix for a critical-severity remote code execution flaw in its ESXi hypervisor products. Wednesday’s VMware advisory said updated patch versions were available after it was discovered the previous patch, released Oct. . . . Read more