5 matches found
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2024-37079link is external Broadcom VMware vCenter Server Out-of-bounds Write Vulnerability This type of vulnerability is a frequent attack vector for malicious...
CVE-2024-37079
creationtimestamp| type| source ---|---|--- 2024-06-18 10:35:10+00:00| seen| Telegram/obSPr9PV0DaqSLTggJciA2CpsnkCDUqehnwTxKSd-hA48 2024-06-18 10:56:22+00:00| seen| https://t.me/thehackernews/5132 2024-06-18 11:00:18+00:00| seen| https://t.me/KomunitiSiber/2122 2024-06-18 11:45:57+00:00| seen|...
VMware Issues Patches for Cloud Foundation, vCenter Server, and vSphere ESXi
VMware has released updates to address critical flaws impacting Cloud Foundation, vCenter Server, and vSphere ESXi that could be exploited to achieve privilege escalation and remote code execution. The list of vulnerabilities is as follows - CVE-2024-37079 & CVE-2024-37080 CVSS scores: 9.8 -...
CVE-2024-37079
CVE-2024-37079 is a VMware vCenter Server DCERPC heap-out-of-bounds/write vulnerability with remote code execution potential when a network-accessible vCenter receives crafted packets. Affected component: vCenter Server (DCERPC workflow). Root cause: heap overflow/out-of-bounds write in the DCERP...
VMSA-2024-0012:VMware vCenter Server updates address heap-overflow and privilege escalation vulnerabilities (CVE-2024-37079, CVE-2024-37080, CVE-2024-37081)
Advisory ID: | VMSA-2024-0012.1 ---|--- Severity: | Critical CVSSv3 Range: | 7.8-9.8 Synopsis: | VMware vCenter Server updates address heap-overflow and privilege escalation vulnerabilities CVE-2024-37079, CVE-2024-37080, CVE-2024-37081 Issue date: | 2024-06-17 Updated on: | 2026-01-23 CVEs |...