Patch gaps leave VMware servers exposed to active exploitation.
CISA and Broadcom warned that attackers have begun exploiting a critical vCenter Server flaw first disclosed in 2024. The vulnerability, an out‑of‑bounds write in the DCERPC implementation, allows remote code execution through crafted network packets. Although patches were released last June, both agencies now say they have evidence of in‑the‑wild abuse but have shared no details on the attacks. With the CVE added to the KEV catalog, federal agencies have three weeks to locate and patch affected systems, and all organizations are urged to review available fixes.
Read more:
https://www.securityweek.com/2024-vmware-flaw-now-in-attackers-crosshairs/