Latest VMware vCenter vulnerabilities #
Broadcom has issued a security advisory for two vulnerabilities that affect VMware vCenter, which exists in both VMware vSphere and VMware Cloud Foundation products.
- CVE-2024-38812 is rated critical with CVSS score of 9.8, and potentially allows for remote code execution.
CVE-2024-38813 is rated high with CVSS score of 7.5, which can result in privilege escalation into root.
What is the impact? #
An attacker with remote access to a vulnerable system could send specially crafted requests that could trigger a heap-overflow and result in remote code execution or privilege escalation into root.
Are updates or workarounds available? #
Broadcom has issued patches to resolve both vulnerabilities. Reference the Response Matrix section of the advisory for the appropriate fixed version to apply in your environment.
How to find potentially vulnerable systems with runZero # #
From the Asset Inventory, use the following query to locate systems running potentially vulnerable software:
product:vCenter