InfoSecBulletin Cybersecurity for mankind
VMware has fixed critical security flaws in Cloud Foundation, vCenter Server, and vSphere ESXi. These flaws could be used for privilege escalation and remote code execution.
Vulnerabilities include:
CVSS 10.0 Flaw
Critical flaw in Siemens OZW Web Servers Enable Unauthenticated RCE
Microsoft Patch Tuesday May 2025: 72 flaws, 5 Actively Exploited Zero-Day
OTP glitch disrupted NID services across the country
Google to pay Texas $1.4 billion for location tracking practices
YouTube geo-blocks at least 4 Bangladeshi TV channels in India
Microsoft Patches Four Critical Azure and Power Apps Vulns
Qilin Ransomware topped April 2025 with 45+ data leak disclosures
SonicWall Patches 3 Flaws in SMA 100 Devices
Top Ransomware Actively Attacking Financial Sector: 406 Incidents Disclosed
Critical (CVSS 10) Flaw in Cisco IOS XE WLCs Allows RRA
CVE-2024-37079 & CVE-2024-37080 (CVSS scores: 9.8):
Multiple heap-overflow vulnerabilities in the implementation of the DCE/RPC protocol that could allow an unauthorized individual with network access to vCenter Server to achieve remote code execution by exploiting a specifically crafted network packet.
CVE-2024-37081 (CVSS score: 7.8):
Multiple sudo misconfiguration vulnerabilities in VMware vCenter that an authenticated local user with non-administrative privileges could exploit to obtain root permissions.
QiAnXin LegendSec researchers Hao Zheng and Zibo Li found and reported CVE-2024-37079 and CVE-2024-37080. Matei “Mal” Badanoiu from Deloitte Romania discovered CVE-2024-37081.
The issues in vCenter Server versions 7.0 and 8.0 have been fixed in versions 7.0 U3r, 8.0 U1e, and 8.0 U2d.
Although there are no reports of the vulnerabilities being exploited, it’s important for users to quickly apply the patches due to their critical nature.
