VMSA-2022-0004 – VMware Security Advisory

15 Şubat 2022 tarihinde VMware tarafından önemli güvenlik açıklarını adresleyen VMSA-2022-0004 dökümanı yayınlandı. Yapılan duyuru da birden fazla açığın adreslendiği görülmektedir.

Affected Products:

VMware ESXi
VMware Workstation Pro / Player (Workstation)
VMware Fusion Pro / Fusion (Fusion)
VMware Cloud Foundation (Cloud Foundation)

VMSA-2022-0004 – Vulnerabilities in same announcement:

Use-after-free vulnerability in XHCI USB controller (CVE-2021-22040)
Double-fetch vulnerability in UHCI USB controller (CVE-2021-22041)
ESXi settingsd unauthorized access vulnerability (CVE-2021-22042)
ESXi settingsd TOCTOU vulnerability (CVE-2021-22043)
ESXi slow HTTP POST denial of service vulnerability (CVE-2021-22050)

Documentation:

VMSA-2022-004
VMSA-2022-0004: Questions & Answers
KB VMware ESXi Updates For VMSA-2022-0004 (87613)

Categories:GeneralVMware

Tags:security vcf vSphere

tolgaasik

VMware

Share

Related Posts

VMware – CDROM Emulation Vulnerability

ESXi Server Deployment Checklist – 3

vSphere Web Client ile Sanal Makine Klonlama

“Virtual machine disks consolidation is needed.” uyarısı ve çözümü

vCenter 5.0 Kurulumu ve İlk Ayarlar

VMware vCenter/VCF Security Issue – Critical