VMware has fixed a critical-severity authentication bypass flaw in its cloud service delivery platform, two weeks after the vulnerability was first disclosed on Nov. 14. The flaw (CVE-2023-34060) exists in VMware Cloud Director Appliance version 10.5 (if the deployment has been upgraded to 10.5 from an older release), and as of Nov. 30 the fix … Read more
Cloud computing and virtualization technology giant VMware on Tuesday rushed out an urgent patch for a gaping authentication bypass bug affecting its Cloud Director Appliance product. The vulnerability, tagged as CVE-2023-34060, carries a CVSS severity-score of 9.8 out of 10 and can be exploited by a malicious actor with network access to the appliance to … Read more
New Support for VMware Identity Services Simplifies and Secures Access to Digital Workspaces, Cloud Apps and Data through VMware Workspace ONE BARCELONA, Spain, Nov. 7, 2023 /PRNewswire/ — IGEL, provider of the managed endpoint operating system for secured access to any digital workspace, today announced from VMware Explore Barcelona that IGEL OS 12 Single Sign-On (SSO) … Read more
Overview Recently, NSFOCUS CERT detected an Authentication Bypass vulnerability in VMware Aria Operations for Networks. Due to the lack of unique cryptographic key generation, Aria Operations for Networks is susceptible to an authentication bypass vulnerability. Attackers with network access to Aria Operations for Networks could bypass SSH authentication to gain access to the Aria Operations … Read more