Threat Level: green Handler on Duty: Guy Bruneau

SANS ISC: Critical VMware vulnerabilities disclosed - SANS Internet Storm Center SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Critical VMware vulnerabilities disclosed

VMware released a security bulletin[1] with moderate to critical vulnerabilities. The following products are affected:

  • ESXi
  • Workstation
  • Fusion 

The vulnerabilities may allow a guest to execute code on the host, may lead to a DDoS or information leakage (depending on the product and version). Patches are available.


Xavier Mertens (@xme)
ISC Handler - Freelance Security Consultant

I will be teaching next: Reverse-Engineering Malware: Malware Analysis Tools and Techniques - SANS London June 2022


687 Posts
ISC Handler
Mar 29th 2017
VMware blog article at
In VMware words, "At this point VMware’s recommendation is that customers expedite updating, though need not take emergency measures like taking environments offline."

Sign Up for Free or Log In to start participating in the conversation!