VMware Releases Security Updates

VMware has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.

Threat ID:: CC-3001
Category:
Threat Severity:: Low
Threat Vector:
Published:: 1 April 2019 12:00 AM

Report a cyber attack: call 0300 303 5222 or email [email protected]

Summary

VMware has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.

Affected platforms

The following platforms are known to be affected:

VMware Fusion & Fusion Pro

VMware Fusion Pro & Fusion - Versions 10.x and 11.x

VMware vCloud Director for Service Providers - Version 9.5.x
VMware vSphere ESXi - Versions 6, 6.5 and 6.7
VMware Workstation Pro & Player - Versions 14.x and 15.x

VMware Workstation Pro & Player

VMware vSphere ESXi

Threat details

For further information:

CVE-2018-15441

Update 20 Dec 2018

Installing the ciscocm.CSCvk30822_v1.0.k3.cop.sgn patch may cause functional issues. Workarounds are available for some of these issues. Please visit vthe Security Advisory for further details.

Remediation steps

Type	Step
	Users and administrators are encouraged to review the VMware Security Advisories VMSA-2019-0004 and VMSA-2019-0005 and apply the necessary updates.

Last edited: 14 February 2020 2:44 pm