Plain Virtualization

Many might have been raised alert on the recent vCenter Server vulnerability which was raised as a 9.8/10 scale rating. One of it can be found here  reported on Feb 23rd. If you have subscribe to VMware Security advisory, you would have received this information VMSA–2021–0002 . I would strongly encourage anyone who is using VMware solution to subscribe to VMware Securities Advisories so as to be kept informed of any security information. If you have refer to VMSA-2021-002, vCenter Server version 7.0 U1c was updated in Dec 17th, 6.7 U3I Nov 19th and lastly 6.5 U3N Feb 23rd one day after the report. If you have been up to date, you would have been protected way before the report was announced. The only version was 6.5 which was release a day after, but based on the report, it was a one day turn around which is still impressive. Also this is very critical for vCenter Server that are connected to the internet. However, this case would be minimal as most customer would not have place t...

If you are new to VMware or not aware, VMware has a Security Advisories page that publishes any new vulnerabilities found in any of its products, including VMware Fusion and Workstation. In fact, to keep yourself updated, it is good to subscribe for such new notices.  Just head over to the page to subscribe. Just yesterday, 15th Sept, there is a critical vulnerability notice which affects ESXi 6.5 (not the Update 1). Always good to stay up to date and apply such critical patches as soon as you can.