Privilege escalation vulnerability
Key Information
- Vendor
- Vmware
- Status
- Vmware Vcenter Server
- Vmware Cloud Foundation
- Vendor
- CVE Published:
- 17 September 2024
Badges
Summary
The vCenter Server contains a privilege escalation vulnerability. A malicious actor with network access to vCenter Server may trigger this vulnerability to escalate privileges to root by sending a specially crafted network packet.
CISA Reported
CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2024-38813 as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace
The CISA's recommendation is: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Affected Version(s)
VMware vCenter Server < 8.0 U3b
VMware vCenter Server < 7.0 U3s
VMware Cloud Foundation = 5.x
News Articles
CybersecurityNews CVE-2024-38812CVE-2024-38813CISA Warns of VMware VCenter Vulnerabilities Actively Exploited in Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical warning regarding two newly discovered vulnerabilities in VMware's vCenter Server.
2 weeks ago
Critical RCE bug in VMware vCenter Server now exploited in attacks
Broadcom warned today that attackers are now exploiting two VMware vCenter Server vulnerabilities, one of which is a critical remote code execution flaw.
2 weeks ago
CVSS V3.1
Timeline
- 👾
Exploit exists.
Risk change from: 9.8 to: 7.5 - (HIGH)
First article discovered by BleepingComputer
Risk change from: null to: 7.5 - (HIGH)
Vulnerability published.