VMware urges customers to patch a critical remote code execution (RCE) vulnerability in the Virtual SAN Health Check plug-in and impacting all vCenter Server deployments. "These updates fix a critical ...

UPDATE: Malicious actors are already scanning honeypots, looking for servers vulnerable to the critical arbitrary file upload flaw in vCenter servers’ Analytics service. VMware has released a security ...

Is VMware slowly becoming the new Oracle? That was the question being asked after the backlash to its initial vRAM licensing model at the launch of vSphere 5. VMware's somewhat quick retraction helped ...

In response to a VMware user group security survey conducted earlier this year, VMware said it would consider certain initiatives aimed at increasing awareness of security updates to its customers and ...

The vulnerability, one of three patched by the company this week, could allow threat actors to breach the external perimeter of a data center or leverage backdoors already installed to take over a ...

Eight months after disclosing a high-severity privilege escalation flaw in vCenter Server's IWA (Integrated Windows Authentication) mechanism, VMware has finally released a patch for one of the ...

VMware has released a series of patches addressing various vulnerabilities in its vCenter Server products (versions 6.5, 6.7 and 7.0) which should be applied immediately, as the ramifications for ...

Virtualization is all the rage these days; it's used by developers, Mac users, Windows aficionados, and Linux fans to make life a little easier in a multi-OS world. As more non-enterprise users begin ...

The first security flaw, CVE-2021-21985, impacts VMware vCenter Server and VMware Cloud Foundation and has been issued a CVSS score of 9.8. This bug was found in a vSAN plugin, enabled by default in ...

Data centers around the world have a new concern to contend with—a remote code vulnerability in a widely used VMware product. A VMware advisory said that vCenter machines using default configurations ...