Security Alert (A22-01-03): Vulnerability in VMware Products


 

Published on: 06 January 2022

  
  

Description:

VMware has published a security advisory to address a vulnerability in VMware products. The list of security updates can be found at:

https://www.vmware.com/security/advisories/VMSA-2022-0001.html

 

Affected Systems:

  • VMware ESXi
  • VMware Fusion
  • VMware Workstation
  • VMware Cloud Foundation

 

Impact:

A successful exploitation of the vulnerability could lead to security restriction bypass or arbitrary code execution on the affected system.

 

Recommendation:

Patches for affected products are available. System administrators of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.

 

More Information:

  • https://www.vmware.com/security/advisories/VMSA-2022-0001.html
  • https://www.hkcert.org/security-bulletin/vmware-products-security-restriction-bypass-vulnerability_20220106
  • https://www.cisa.gov/uscert/ncas/current-activity/2022/01/05/vmware-releases-security-updates
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22045

 



Tag: VMware , ESXi , VMware Fusion , VMware Workstation , Cloud Foundation
Tags