ZDNet

Patch immediately: VMware warns of critical remote code execution hole in vCenter

VMware is urging its vCenter users to update vCenter Server versions 6.5, 6.7, and 7.0 immediately, after a pair of vulnerabilities were reported privately to the company. The most pressing is ...
ZDNet

Critical remote code execution flaw in thousands of VMWare vCenter servers remains unpatched

The first security flaw, CVE-2021-21985, impacts VMware vCenter Server and VMware Cloud Foundation and has been issued a CVSS score of 9.8. This bug was found in a vSAN plugin, enabled by default in ...