Application Security, Cloud Security, Vulnerabilities

VMware Plugs Security Holes in Workstation, Fusion and ESXi

Issued by: Security Week

Source
Advertisement


Tracked as CVE-2021-22045 (CVSS score of 7.7), the security vulnerability exists in the CD-ROM device emulation function of Workstation, Fusion and ESXi.

In an advisory, VMWare said the security defect could be exploited by attackers with access to a virtual machine that has CD-ROM device emulation enabled.

An attacker capable of combining the security error with additional flaws could eventually achieve code execution on the hypervisor from the virtual machine.

Disabling or disconnecting the CD-ROM/DVD devices on all running virtual machines should prevent potentially exploitation.

Read more
You might also like
Application Security

Passwords for 540,642 GPS vehicle tracking devices leaked online

Vulnerabilities

Citrix ADC, Gateway Users Race Against Hackers to Patch Critical Flaw

Cloud Security

Malwarebytes DNS Filtering helps IT and security teams block access to malicious websites

Application Security

All apps on Google Play are safe: Fact or fiction?

Advertisement