VMware by Broadcom has fixed two critical vulnerabilities (CVE-2024-37079, CVE-2024-37080) affecting VMware vCenter Server and products that contain it: vSphere and Cloud Foundation. “A malicious actor with network access to vCenter Server may trigger these vulnerabilities by sending a specially crafted network packet potentially leading to remote code execution,” the company said, but noted that they are currently not aware of them being exploited “in the wild”. The vulnerabilities VMware vCenter Server is a popular … More
The post Critical RCE flaws in vCenter Server fixed (CVE-2024-37079, CVE-2024-37080) appeared first on Help Net Security.