VMware has recently addressed two vulnerabilities in its vCenter Server software [3] [6]. These vulnerabilities pose significant risks and require immediate attention.
Description
The first vulnerability, known as CVE-2023-34048 [2] [4] [6], is a critical flaw in the DCE/RPC protocol implementation. It allows an attacker with network access to execute remote code [3], making it a serious threat. Grigory Dorodnov of Trend Micro Zero Day Initiative discovered and reported this vulnerability. Its severity is evident from its CVSS v3 score of 9.8. To address this issue, VMware has released patches for multiple versions of vCenter Server [2] [7], including 6.7U3, 6.5U3 [3], and 8.0U1 [3] [6]. Users are strongly advised to update their systems promptly. Furthermore, asynchronous patches are available for VCF 5x and 4x deployments [3].
The second vulnerability, not mentioned in the reference text, is a moderate-severity information disclosure flaw [3]. It allows unauthorized access to data for non-administrative users [3]. Although not directly related to the main focus of the information, it is worth noting for a comprehensive understanding of the situation.
Conclusion
These vulnerabilities highlight the importance of promptly applying patches and updates to ensure the security of VMware vCenter Server. Failure to do so may result in unauthorized access, data breaches, and potential remote code execution [1] [4] [5] [6] [7]. Users must take immediate action to mitigate these risks and protect their systems. Additionally, this serves as a reminder of the ongoing need for vigilance and proactive measures to safeguard against emerging threats in the future.
References
[1] https://safecomputing.umich.edu/security-alerts/update-vmware-vcenter-server-critical-vulnerability-0
[2] https://duo.com/decipher/vmware-fixes-critical-severity-vcenter-server-bug
[3] https://www.vumetric.com/cybersecurity-news/vmware-patches-critical-vulnerability-in-vcenter-server-cve-2023-34048/
[4] https://thehackernews.com/2023/10/act-now-vmware-releases-patch-for.html
[5] https://www.darkreading.com/vulnerabilities-threats/vmware-issues-alarming-security-advisory
[6] https://www.malwarebytes.com/blog/news/2023/10/update-vcenter-server-now-vmware-fixes-critical-vulnerability
[7] https://www.helpnetsecurity.com/2023/10/25/cve-2023-34048/
