Critical Code Execution Vulnerabilities Patched in VMware vCenter Server


Broadcom-owned VMware has released patches for critical vulnerabilities in vCenter Server, including two heap-overflow flaws (CVE-2024-37079 and CVE-2024-37080) impacting the DCERPC protocol, which could enable remote code execution via specially crafted network packets. Additionally, local privilege escalation issues (CVE-2024-37081) caused by misconfigured Sudo have been addressed, which could allow non-administrative users to gain root access. These vulnerabilities affect vCenter Server versions 7.0 and 8.0, with fixes provided in versions 8.0 U2d, 8.0 U1e, and 7.0 U3r. VMware credits researchers from Qi An Xin and Deloitte Romania for identifying these flaws. No exploitation of these vulnerabilities has been reported in the wild.

Read More…