VMware this week fixed two critical vulnerabilities in jts vCenter Server used by data centers to manage the virtualization platform for VMware vSphere servers.
According to IDC, VMware is the world’s top-selling cloud system and service management software. According to a 2020 survey by Spiceworks, 68 percent of companies using server virtualization use vSphere, with Microsoft Hyper-V ranking second at 60 percent.
This is an example of a remote code execution vulnerability, one of the OWASP top ten.
The vulnerabilities were discovered by Mikhail Klyuchnikov, lead security researcher for web applications at Positive Technologies.
“The Internet is already being searched for this vulnerability,” he told DCK.
When Positive Technologies released its report on the vulnerability on Wednesday, the research company was able to more than …