August pack of things: Security Vulnerabilities, VMware Expert 2021, VMworld 2021, and more

-
Critical Security Vulnerability
  1. Workspace One Access and vRealize Automation
    VMware has release a security notice VMSA-2021-0016 in regards to Workspace One Access (WOA) i.e VMware Identity Manager (vIDM) with a CVSSv3 base score of 8.6. It is encourage to apply the patch or workaround as soon as possible. This also applies to vRealize Automation that has embedded vIDM aka WOA.
  2. Server Side Request Forgery in vRealize Operations Manager API (CVE-2021-21975)
    This is impacting vRealize Operations Manager which can be a standalone product, in VMware Cloud Foundation or vCloud Suite and deployed by vRealize Suite Lifecycle Manager. It has a CVSSv3 base score of 8.6 which is highly critical. This allows authenticated user via API to vROps the permission to write files directly locally to the underlying OS, Photon. 

VMware vExpert 2021 Second Half
Congrats to all new vExpert 2021 from Second Half announcement. It is not easy to have such a big community with everyone contributing without all these individual who have contributed one way or the other outside your day job.


VMworld 2021 Tracks
The tracks for VMworld 2021 is now gone live. If you have not register, do it now! You can start planning your tracks right away.

Comments

Post a Comment

Popular posts from this blog

Why VMware or Why Not after Broadcom?

-
The Truth Yes, the news of VMware acquired by Broadcom has come to a realization. We cannot denied the truth since 22nd Nov 2023. Prior the acquisition, if you have made a multi-year purchase before that, you will have whatever you can consume after the acquisition. VMware after the acquisition has release new bundle of all their offerings and end the perpetual licensing offer to the market. The individual products are not make available and cannot be purchase as a standalone. But are offered via two bundle namely; VMware vSphere Foundation (VVF), VMware Cloud Foundation (VCF). Both of which are all subscription licenses. It also ends all sales and renewal of any perpetual licenses. Honestly, VMware has been trying to end its perpetual license and into subscription for the longest time. With the Broadcom acquisition, VMware has been one of the last major player that has moved to subscription license. Customer who are on VMware, has been enjoying the great pricing with no limit of cores
Read more

VMware by Broadcom, A New Chapter Forward

-
With Broadcom acquisition of VMware completing in 22nd Nov, there have been lots of assumption made by many sources what will become of the business direction. Here are some of the updates that are publicly announced if you have not catch up on the news. To start with, VMware is now known as VMware by Broadcom and all originally VMware software will remain to be branded under VMware. The first announcement 27th November, Carbon Black is  now  an autonomous unit within Broadcom. In my opinion this is good news. I have seen not much integration on Carbon Black ever since acquired by VMware so with that move, it allows Carbon Black to innovate and do what they do best in Cyber security landscape. Next from the acquisition completion, there are many speculation on after the acquisition what will end up of End User Computing? With the  announcement  on 8th December, The End User Computing (EUC) division will be a diverse business. With that understanding, EUC division will operate on their
Read more

VMware vExpert 2024 Application is Now Open!

-
I believe many would have wonder if the vExpert Program will continue since VMware has been acquired by Broadcom recently. I am glad to announce that Corey Romero the program manager for VMware vExpert is continuing the support for the program and this is also Broadcom is supportive of it community recognition. Just for information, VMware User Group is here to stay! For those who are not aware, the VMware vExpert 2024 application is now open. You can follow the post here . There are calls and multiple resources to help you out with your applications and explanation to the different path. Do take note you can fill in the form and save it and submit before 15 Dec 2023 closing date. So take your time to collect your thoughts on your contribution to the VMware community. There is no rush to fill it up at one go. If you need any advice or help, and need to talk to someone, go to the vExpert Pro directory and find someone near you. I am honoured to be part of this directory. Personally I
Read more