Threat Post

Critical VMware Zero-Day Bug Allows Command Injection; Patch Pending

VMware explained it has no patch for a critical escalation-of-privileges bug that impacts both Windows and Linux operating systems and its Workspace One. The U.S. Cybersecurity and Infrastructure ...
Bleeping Computer

VMware fixes zero-day vulnerability reported by the NSA

VMware has released security updates to address a zero-day vulnerability in VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector. The vulnerability is a ...
ZDNet

VMware warns of critical remote code execution bug in Workspace ONE Access

VMware is urging customers to update their software to resolve critical vulnerabilities, including a remote code execution (RCE) bug in Workspace ONE Access. On Wednesday, the tech giant published a ...
CRN

CISA: Unpatched VMware Products Pose ‘Unacceptable Risk To Federal Network Security’

VMware says the vulnverabilities it disclosed in April have since been exploited. The federal government is warning the software’s users to immediately patch five products: VMware Workspace ONE Access ...
Bleeping Computer

VMware discloses critical zero-day vulnerability in Workspace One

VMware has released a workaround to address a critical zero-day in multiple VMware Workspace One components that allows attackers to execute commands on the host Linux and Windows operating systems ...
Threat Post

VMware Rolls a Fix for Formerly Critical Zero-Day Bug

VMware has issued a full patch and revised the severity level of the NSA-reported vulnerability to “important.” VMware has patched a zero-day bug that was disclosed in late November – an escalation-of ...