Loading...
Loading...
Browse all stories on DeepNewz
VisitWhat action will Broadcom take regarding the VMware ESXi vulnerability by December 31, 2024?
Release a patch • 25%
Issue a workaround • 25%
Upgrade severity rating • 25%
No action taken • 25%
Official announcements or updates from Broadcom or VMware
Broadcom's VMware ESXi Vulnerability Allows Hackers Admin Control Despite 'Moderate' Severity Rating
Jul 29, 2024, 09:26 PM
A recently discovered vulnerability in VMware's ESXi hypervisor allows hackers to gain hypervisor admin control by simply creating an Active Directory (AD) group named 'ESX Admins'. This issue, which VMware has classified as 'moderate' severity, is being actively exploited by ransomware threat actors. The vulnerability is particularly concerning because the right to create such a group is often delegated to many IT personnel or even all users within a company through platforms like Microsoft Identity Manager (MIM). Despite the serious implications, VMware's classification of the vulnerability has raised concerns among cybersecurity experts. Broadcom, the parent company of VMware, has yet to address these concerns.
View original story
Fully resolved • 25%
Partially resolved • 25%
No resolution • 25%
Issue worsened • 25%
Yes • 50%
No • 50%
Release a major software update • 25%
Issue a formal apology • 25%
Compensate affected customers • 25%
Other • 25%
Apple • 25%
Microsoft • 25%
Third-party cybersecurity firm • 25%
No patch released • 25%
Yes • 50%
No • 50%
1 • 25%
2 • 25%
3 • 25%
4 or more • 25%
Release additional tools • 25%
Issue software updates • 25%
Provide compensation to affected users • 25%
Other • 25%
Yes • 50%
No • 50%
No • 50%
Yes • 50%
Yes • 50%
No • 50%
No • 50%
Yes • 50%
Other • 25%
Ransomware • 25%
Data theft • 25%
Denial of Service • 25%