Sign in / up

back to article VMware by Broadcom warns of two critical vCenter flaws, plus a nasty sudo bug

VMware by Broadcom has revealed a pair of critical-rated flaws in vCenter Server – the tool used to manage virtual machines and hosts in its flagship Cloud Foundation and vSphere suites. Announced late on Monday night, Pacific Time, the critical-rated flaws are CVE-2024-37079 and CVE-2024-37080, both of which scored 9.8 on the …

COMMENTS

Post your comment
House rules Send corrections
Add to 'My topics' unstar *
  1. Yorick Hunt Silver badge
    Holmes

    Let me guess, fixes only available for customers on contract?

    Seems like a very underhanded marketing ploy to me. "Sign up now, look at all the nasties we'll fix if you just sign your firstborn over to us!"

    5 0 Reply
    1. sedregj Bronze badge
      Reply Icon
      Linux

      "fixes only available for customers on contract?"

      If you have a vCentre then you are on a subscription of some sort. I'm just waiting for Veeam to release Proxmox support and then off I trot.

      4 2 Reply
      1. Anonymous Coward
        Reply Icon
        Anonymous Coward

        Might not be.

        Mine is pirated. The keygen creates permanent keys, so permanent keys do exist.

        2 0 Reply
  2. seven of five Silver badge

    So from the net via vcenter into any VM?

    Thats quite a holy grail...

    4 0 Reply
  3. CowHorseFrog Silver badge

    Who paid Matei from Romania to invest all this time to "check" for flaws ?

    0 1 Reply
    1. Wzrd1
      Reply Icon

      "Who paid Matei from Romania to invest all this time to "check" for flaws ?"

      The space aliens, of course!

      Stupid questions get stupid answers, since it's a stupid game with a stupid prize.

      0 0 Reply
      1. CowHorseFrog Silver badge
        Reply Icon

        Why is it a stupid question ?

        Why would someone invest months of effort looking at random products HOPING to MAYBE find a VULN...?

        How about you actually answer the q instead of being an arsehole...writing insults.

        0 1 Reply
        1. Wzrd1
          Reply Icon

          The most common VM software on the planet is now some random software, which by such a daffynition would be of minimal concern?

          Why does anyone examine software for vulnerabilities with or without pay, obviously it's the space aliens, not out of interest in security.

          Nanu nanu.

          0 0 Reply

POST COMMENT House rules

Not a member of The Register? Create a new account here.

Forgotten password ?

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like