VMware just fixed a privately reported remote code execution vulnerability in its Cloud Foundation product. Known under the CVE-2021-39144 identifier, the vulnerability has a critical severity score of 9.8 out of 10. Fortunately, updates are already available for the affected VMware products.
CVE-2021-39144 in VMware Cloud Foundation: What Is the Impact?
According to the official advisory, a threat actor can perform remote code execution at root level on the appliance due to an unauthenticated endpoint that uses XStream for input serialization.
The company has expressed gratitude to Sina Kheirkhah and Steven Seeley of Source Incite for reporting the issue. Affected parties should apply the available patches as soon as possible.
Another recently disclosed VMware vulnerability with the same severity rating (9.8) is CVE-2022-31656, an authentication bypass issue that impacts local domain users. Affected products include VMware Workspace ONE Access, Identity Manager and vRealize Automation. The vulnerability could be exploited with network access to obtain administrative rights.
Milena Dimitrova
An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
Follow Me: