Critical: vCenter Server Vulnerability VMSA-2021-0002

Many might have been raised alert on the recent vCenter Server vulnerability which was raised as a 9.8/10 scale rating. One of it can be found here reported on Feb 23rd.

If you have subscribe to VMware Security advisory, you would have received this information VMSA–2021–0002.

I would strongly encourage anyone who is using VMware solution to subscribe to VMware Securities Advisories so as to be kept informed of any security information.

If you have refer to VMSA-2021-002, vCenter Server version 7.0 U1c was updated in Dec 17th, 6.7 U3I Nov 19th and lastly 6.5 U3N Feb 23rd one day after the report. If you have been up to date, you would have been protected way before the report was announced. The only version was 6.5 which was release a day after, but based on the report, it was a one day turn around which is still impressive.

Also this is very critical for vCenter Server that are connected to the internet. However, this case would be minimal as most customer would not have place their management server facing internet. This normally would be front by a proxy server to start with. Nevertheless, do get yourself updated for any critical security patches to be save from a compromise.


Comments

Popular posts from this blog

Why VMware or Why Not after Broadcom?

VMware Certifications Updates

VMware vExpert 2025 Applications Starts Now!