VMWare Users

VMWare has issued an advisory for a critical vulnerability in VMWare vCenter Server, with a CVSS severity rating 9.8 out of 10. A temporary workaround to mitigate the vulnerability is available and should be installed as soon as possible. If the server is left unmitigated, an attacker could access the server remotely without authentication and perform unrestricted command execution with SYSTEM privileges on the server. Especially if vCenter servers are directly accessible from the Internet, they are at high risk of exploitation. We recommend that all companies that have a vCenter Server follow the recommendations from VMWare in this advisory: https://kb.vmware.com/s/article/82374