Vmware Vsphere vulnerabilities

CVE-2017-4933 [HIGH] VMware ESXi, vCenter Server Appliance, Workstation and Fusion updates address multiple security vulnerabilities VMSA-2017-0021: VMware ESXi, vCenter Server Appliance, Workstation and Fusion updates address multiple security vulnerabilities a. ESXi, Workstation, and Fusion stack overflow via authenticated VNC session VMware ESXi, Workstation, and Fusion contain a vulnerability that could allow an authenticated VNC session to cause a stack overflow via a specific set of VNC p

CVE-2017-4929 [MEDIUM] NSX for vSphere update addresses NSX Edge Cross-Site Scripting (XSS) issue. VMSA-2017-0019: NSX for vSphere update addresses NSX Edge Cross-Site Scripting (XSS) issue. NSX for vSphere update addresses NSX Edge Cross-Site Scripting (XSS) issue. 2. Relevant Products NSX for vSphere 3. Problem Description a. NSX Edge Cross-Site Scripting (XSS) issue. NSX Edge contains a moderate Cross-Site Scripting (XSS) issue which may lead to information disclosure. VMware would like to t

CVE-2017-4927 [HIGH] VMware vCenter Server update resolves LDAP DoS, SSRF and CRLF injection issues VMSA-2017-0017: VMware vCenter Server update resolves LDAP DoS, SSRF and CRLF injection issues a. VMware vCenter Server LDAP Denial of Service (DoS). VMware vCenter Server doesn't correctly handle specially crafted LDAP network packets which may allow for remote DoS. VMware would like to thank Honggang Ren of Fortinet's FortiGuard Labs for reporting this issue to us. The Common Vulnerabilities an

CVE-2017-4924 [HIGH] VMware ESXi, vCenter Server, Fusion and Workstation updates resolve multiple security vulnerabilities VMSA-2017-0015: VMware ESXi, vCenter Server, Fusion and Workstation updates resolve multiple security vulnerabilities VMware ESXi, vCenter Server, Fusion and Workstation updates resolve multiple security vulnerabilities. 2. Relevant Products VMware ESXi (ESXi) VMware vCenter Server VMware Workstation Pro / Player (Workstation) VMware Fusion Pro, Fusion (Fusion)3. Problem De

CVE-2017-4920 [MEDIUM] VMware NSX-V Edge updates address OSPF Protocol LSA DoS VMSA-2017-0014: VMware NSX-V Edge updates address OSPF Protocol LSA DoS a. VMware NSX-V Edge OSPF Protocol LSA Denial of Service VMware NSX-V implementation of the OSPF protocol doesn’t correctly handle the link-state advertisement (LSA). A rogue LSA may exploit this issue resulting in continuous sending of LSAs between two routers eventually going in loop or loss of connectivity. Note: The issue cannot be exploited

CVE-2017-4919 [CRITICAL] VMware VIX API VM Direct Access Function security issue VMSA-2017-0012: VMware VIX API VM Direct Access Function security issue VMware VIX API VM Direct Access Function security issue The VMware VIX API has a functionality that allows for direct access to Guests OSs which is used by VMware Site Recovery Manager, VMware Update Manager, and VMware Infrastructure Navigator to manage Guest OSs. This functionality may be used by vSphere users with limited privileges to acces

CVE-2015-5191 [MEDIUM] VMware vCenter Server and Tools updates resolve multiple security vulnerabilities VMSA-2017-0013: VMware vCenter Server and Tools updates resolve multiple security vulnerabilities a. Insecure library loading through LD_LIBRARY_PATH VMware vCenter Server contains an insecure library loading issue that occurs due to the use of LD_LIBRARY_PATH variable in an unsafe manner. Successful exploitation of this issue may allow unprivileged host users to load a shared library that m

CVE-2016-7456 [CRITICAL] vSphere Data Protection (VDP) updates address SSH Key-Based authentication issue VMSA-2016-0024: vSphere Data Protection (VDP) updates address SSH Key-Based authentication issue VDP SSH key-based authentication issue VDP contains a private SSH key with a known password that is configured to allow key-based authentication. Exploitation of this issue may allow an unauthorized remote attacker to log into the appliance with root privileges. VMware would like to thank Marc S

CVE-2015-6931 [MEDIUM] VMware vCenter Server updates address an important reflected cross-site scripting issue VMSA-2016-0009: VMware vCenter Server updates address an important reflected cross-site scripting issue a. Important vCenter Server reflected cross-site scripting issue The vSphere Web Client contains a reflected cross-site scripting vulnerability due to a lack of input sanitization. An attacker can exploit this issue by tricking a victim into clicking a malicious link. VMware would li

CVE-2016-2079 [MEDIUM] VMware NSX and vCNS product updates address a critical information disclosure vulnerability VMSA-2016-0007: VMware NSX and vCNS product updates address a critical information disclosure vulnerability a. VMware NSX and vCNS critical information disclosure vulnerability VMware NSX and vCNS with SSL-VPN enabled contain a critical input validation vulnerability. This issue may allow a remote attacker to gain access to sensitive information. The Common Vulnerabilities and Expo

CVE-2016-2078 [MEDIUM] VMware vCenter Server updates address an important cross-site scripting issue VMSA-2016-0006: VMware vCenter Server updates address an important cross-site scripting issue a. Reflected cross-site scripting issue through flash parameter injection The vSphere Web Client contains a reflected cross-site scripting vulnerability that occurs through flash parameter injection. An attacker can exploit this issue by tricking a victim into clicking a malicious link. VMware would lik

CVE-2016-2077 [CRITICAL] VMware product updates address critical and important security issues. VMSA-2016-0005: VMware product updates address critical and important security issues. a. Critical JMX issue when deserializing authentication credentials The RMI server of Oracle JRE JMX deserializes any class when deserializing authentication credentials. This may allow a remote, unauthenticated attacker to cause deserialization flaws and execute their commands. Workarounds CVE-2016-3427 vCenter Se

CVE-2015-1047 [HIGH] VMware vCenter and ESXi updates address critical security issues. VMSA-2015-0007: VMware vCenter and ESXi updates address critical security issues. a. VMware ESXi OpenSLP Remote Code Execution VMware ESXi contains a double free flaw in OpenSLP's SLPDProcessMessage() function. Exploitation of this issue may allow an unauthenticated attacker to remotely execute code on the ESXi host. VMware would like to thank Qinghao Tang of QIHU 360 for reporting this issue to us. The Commo

CVE-2015-6932 [MEDIUM] VMware vCenter Server updates address a LDAP certificate validation issue VMSA-2015-0006: VMware vCenter Server updates address a LDAP certificate validation issue VMware vCenter Server LDAP certificate validation vulnerability. VMware vCenter Server does not validate the certificate when connecting to a single sign on identity source using LDAPS (LDAP over SSL). This applies when connecting to Active Directory as an LDAP Server or OpenLDAP. Exploitation of this vulnerabi

CVE-2014-3513 [MEDIUM] VMware vCenter Server, ESXi, Workstation, Player, and Fusion updates address security issues VMSA-2015-0001: VMware vCenter Server, ESXi, Workstation, Player, and Fusion updates address security issues a. VMware ESXi, Workstation, Player, and Fusion host privilege escalation vulnerability VMware ESXi, Workstation, Player and Fusion contain an arbitrary file write issue. Exploitation this issue may allow for privilege escalation on the host. The vulnerability does not allo

CVE-2014-6271 [CRITICAL] VMware product updates address critical Bash security vulnerabilities VMSA-2014-0010: VMware product updates address critical Bash security vulnerabilities a. Bash update for multiple products. Bash libraries have been updated in multiple products to resolve multiple critical security issues, also referred to as Shellshock. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the identifiers CVE-2014-6271, CVE-2014-7169, CVE-2014-7186, and CVE-2

CVE-2014-3796 [MEDIUM] VMware NSX and vCNS product updates address a critical information disclosure vulnerability. VMSA-2014-0009: VMware NSX and vCNS product updates address a critical information disclosure vulnerability. a. VMware NSX and vCNS information disclosure vulnerability VMware NSX and vCNS contain an input validation vulnerability. This issue may allow for critical information disclosure. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the identifier

CVE-2014-1207 [MEDIUM] VMware Workstation, Player, Fusion, ESXi, ESX and vCloud Director address several security issues VMSA-2014-0001: VMware Workstation, Player, Fusion, ESXi, ESX and vCloud Director address several security issues a. VMware ESXi and ESX NFC NULL pointer dereference VMware ESXi and ESX contain a NULL pointer dereference in the handling of the Network File Copy (NFC) traffic. To exploit this vulnerability, an attacker must intercept and modify the NFC traffic between ESXi/ESX

CVE-2013-1661 [MEDIUM] VMware ESXi and ESX address an NFC Protocol Unhandled Exception VMSA-2013-0011: VMware ESXi and ESX address an NFC Protocol Unhandled Exception a. VMware ESXi and ESX NFC Protocol Unhandled Exception VMware ESXi and ESX contain a vulnerability in the handling of the Network File Copy (NFC) protocol. To exploit this vulnerability, an attacker must intercept and modify the NFC traffic between ESXi/ESX and the client. Exploitation of the issue may lead to a Denial of Service

CVE-2012-2110 [HIGH] VMware vCenter Server, ESXi and ESX address an NFC Protocol memory corruption and third party library security issues. VMSA-2013-0003: VMware vCenter Server, ESXi and ESX address an NFC Protocol memory corruption and third party library security issues. a. VMware vCenter, ESXi and ESX NFC protocol memory corruption vulnerability VMware vCenter Server, ESXi and ESX contain a vulnerability in the handling of the Network File Copy (NFC) protocol. To exploit this vulnerability,