vmware – Page 3 – PossibleThreat Articles

Update vRealize now! VMware patches critical RCE vulnerabilities

January 28, 2023 0 Comments broken access control, cve-2022-31702, cve-2022-31704, cve-2022-31706, directory traversal, Exploits and vulnerabilities, news, path traversal, vmware, vrealize

Categories: Exploits and vulnerabilities

Categories: News

Tags: vRealize

Tags: VMware

Tags: CVE-2022-31706

Tags: CVE-2022-31704

Tags: CVE-2022-31702

Tags: path traversal

Tags: directory traversal

Tags: broken access control

VMware has issued a security advisory for vRealize Log Insight that covers four vulnerabilities, including two critical RCEs

MalwareBytes Security

Update now! October patch Tuesday fixes actively used zero-day…but not the one you expected

October 12, 2022 0 Comments Adobe, Android, Apple, cve-2022-41033, cve-2022-41040, Exploits and vulnerabilities, fortinet, Google, Microsoft, news, Samsung, sap, vmware, xiaomi, zero day

Categories: Exploits and vulnerabilities

Categories: News

Tags: Microsoft

Tags: Apple

Tags: Google

Tags: Android

Tags: Samsung

Tags: Xiaomi

Tags: Adobe

Tags: SAP

Tags: VMWare

Tags: Fortinet

Tags: CVE-2022-41033

Tags: CVE-2022-41040

Tags: zero-day

No fix for ProxyNotShell

MalwareBytes Security

Update now! Microsoft patches two zero-days

September 14, 2022 0 Comments Adobe, Android, Apple, Cisco, cve-2022-23960, cve-2022-34700, cve-2022-34718, cve-2022-34721, cve-2022-34722, cve-2022-35805, cve-2022-37969, Google, Microsoft, news, Samsung, sap, vmware

Categories: News

Tags: CVE-2022-37969

Tags: CVE-2022-23960

Tags: CVE-2022-35805

Tags: CVE-2022-34700

Tags: CVE-2022-34718

Tags: CVE-2022-34721

Tags: CVE-2022-34722

Tags: Microsoft

Tags: Adobe

Tags: Android

Tags: Apple

Tags: Cisco

Tags: Google

Tags: Samsung

Tags: SAP

Tags: VMWare

The September 2022 Patch Tuesday updates includes two zero-day vulnerabilities, one of which is known to be used in attacks

(Read more…)

The post Update now! Microsoft patches two zero-days appeared first on Malwarebytes Labs.

MalwareBytes Security

Update now! Microsoft fixes two zero-days in August’s Patch Tuesday

August 11, 2022 0 Comments Adobe, Android, Cisco, cve-2022-24477, cve-2022-24516, cve-2022-30133, cve-2022-30134, cve-2022-34713, cve-2022-34715, cve-2022-35743, dogwalk, exchange, Exploits and vulnerabilities, Google, Microsoft, msdt, news, nfs, Patch Tuesday, ppp, sap, vmware

Categories: Exploits and vulnerabilities

Categories: News

Tags: Microsoft

Tags: patch Tuesday

Tags: MSDT

Tags: NFS

Tags: PPP

Tags: Exchange

Tags: CVE-2022-34713

Tags: CVE-2022-35743

Tags: DogWalk

Tags: CVE-2022-30134

Tags: CVE-2022-24477

Tags: CVE-2022-24516

Tags: CVE-2022-30133

Tags: CVE-2022-34715

Tags: Adobe

Tags: Cisco

Tags: Google

Tags: Android

Tags: SAP

Tags: VMWare

Patch Tuesday for August 2022 has come around. We take a look at the most important vulnerabilities that Microsoft’s fixed and a brief look at what other vendors did.

MalwareBytes Security

A week in security (August 1 – 7)

August 8, 2022 0 Comments A week in security, arris, blog recap, blog roundup, cisco vpn, FCC, justalk, lock and code, lock and code podcast, malwarebytes edr, managed service providers, mick foley, msp, netstandard, ps5 scam, Ransomware, rat, robotext, sextortion, smishing, sms phishing, twitter, twitter compromise, vmware, week in security, weekly blog roundup, woody rat

Credit to Author: Malwarebytes Labs| Date: Mon, 08 Aug 2022 11:38:31 +0000

The most important and interesting computer security stories from the last week.

The post A week in security (August 1 – 7) appeared first on Malwarebytes Labs.

MalwareBytes Security

Update now! VMWare patches critical vulnerabilities in several products

August 3, 2022 0 Comments cve-2022-31656, cve-2022-31658, cve-2022-31659, cve-2022-31660, cve-2022-31661, cve-2022-31664, cve-2022-31665, cvss, Exploits and vulnerabilities, identity manager, jdbc, one access, rce, vmsa-2022-0021, vmware, vmware workspace, vrealize automation

Credit to Author: Pieter Arntz| Date: Wed, 03 Aug 2022 13:27:47 +0000

In a critical security advisory VMWare patches multiple RCE and EoP vulnerabilities in several affected products.

The post Update now! VMWare patches critical vulnerabilities in several products appeared first on Malwarebytes Labs.

Security Sophos

BlackCat ransomware attacks not merely a byproduct of bad luck

July 14, 2022 0 Comments blackcat, citrix, esxi, featured, SophosLabs Uncut, threat research, vmware, vpn

Credit to Author: Andrew Brandt| Date: Thu, 14 Jul 2022 11:05:03 +0000

Older hardware and outdated operating systems contribute to attacks

MalwareBytes Security

Update now—July Patch Tuesday patches include fix for exploited zero-day

July 13, 2022 0 Comments Adobe, azure site recovery, Cisco, citrix, csrss, cve-2022-22029, cve-2022-22038, cve-2022-22039, cve-2022-22047, cve-2022-30221, Exploits and vulnerabilities, google android, Patch Tuesday, sap, sql injection, vmware

Credit to Author: Pieter Arntz| Date: Wed, 13 Jul 2022 12:21:53 +0000

July’s Patch Tuesday gives us a lot of important security updates. Most prominently, a known to be exploited vulnerability in Windows CSRSS.

The post Update now—July Patch Tuesday patches include fix for exploited zero-day appeared first on Malwarebytes Labs.

MalwareBytes Security

CISA Log4Shell warning: Patch VMware Horizon installations immediately

June 27, 2022 0 Comments Exploit, Exploits and vulnerabilities, log4shell, Malwarebytes news, vmware, vulnerability

Credit to Author: Christopher Boyd| Date: Mon, 27 Jun 2022 09:54:58 +0000

CISA warns of log4shell being actively exploited to compromise VMware Horizon systems. We take a look at their warning.

The post CISA Log4Shell warning: Patch VMware Horizon installations immediately appeared first on Malwarebytes Labs.

MalwareBytes Security

BlackBasta is the latest ransomware to target ESXi virtual machines on Linux

June 9, 2022 0 Comments blackbasta, chacha20, hypervisor, linux ransomware, Ransomware, ransomware targeting esxi, virtual machine, vmware, vmware esxi

Credit to Author: Jovi Umawing| Date: Thu, 09 Jun 2022 13:50:41 +0000

BlackBasta, a newish ransomware group that is somehow linked to Conti, has a new Linux variant of its malware that targets VMware ESXi virtual machines.

The post BlackBasta is the latest ransomware to target ESXi virtual machines on Linux appeared first on Malwarebytes Labs.