VMware Patches Critical ESXi Sandbox Escape Flaws

www.vmware.com

VMware Patches Critical ESXi Sandbox Escape Flaws

www.vmware.com

KidM to

CybersecurityEnglish · 11 months ago

VMware issued patches for critical flaws in ESXi, Workstation, Fusion, and Cloud Foundation, with a focus on two use-after-free vulnerabilities in the XHCI USB controller (CVE-2024-22252, CVE-2024-22253) scoring 9.3 CVSS. These allow local admin privilege escalation and code execution on the host. An ESXi out-of-bounds write and an information disclosure vulnerability in the UHCI USB controller were also noted.

You must log in or register to comment.

Chat

Cybersecurity

cybersecurity

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: [email protected]

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Be respectful. Everyone should feel welcome here.
No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
No Ads / Spamming.
No pornography.

Community Rules

Idk, keep it semi-professional?
Nothing illegal. We’re all ethical here.
Rules will be added/redefined as necessary.

If you ask someone to hack your “friends” socials you’re just going to get banned so don’t do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

529 users / day
938 users / week
1.9K users / month
4.9K users / 6 months
1.43K local subscribers
5.98K subscribers
1.91K Posts
3.99K Comments
Modlog