Loading...
Loading...
Browse all stories on DeepNewz
VisitWill the VMware ESXi vulnerability be upgraded to a 'high' severity rating by December 31, 2024?
Yes • 50%
No • 50%
Official VMware security advisory or update
Broadcom's VMware ESXi Vulnerability Allows Hackers Admin Control Despite 'Moderate' Severity Rating
Jul 29, 2024, 09:26 PM
A recently discovered vulnerability in VMware's ESXi hypervisor allows hackers to gain hypervisor admin control by simply creating an Active Directory (AD) group named 'ESX Admins'. This issue, which VMware has classified as 'moderate' severity, is being actively exploited by ransomware threat actors. The vulnerability is particularly concerning because the right to create such a group is often delegated to many IT personnel or even all users within a company through platforms like Microsoft Identity Manager (MIM). Despite the serious implications, VMware's classification of the vulnerability has raised concerns among cybersecurity experts. Broadcom, the parent company of VMware, has yet to address these concerns.
View original story
Yes • 50%
No • 50%
Yes • 50%
No • 50%
Yes • 50%
No • 50%
Yes • 50%
No • 50%
Yes • 50%
No • 50%
Yes • 50%
No • 50%
Yes • 50%
No • 50%
Fully resolved • 25%
Partially resolved • 25%
No resolution • 25%
Issue worsened • 25%
Yes • 50%
No • 50%
No • 50%
Yes • 50%
Yes • 50%
No • 50%
Release a patch • 25%
No action taken • 25%
Upgrade severity rating • 25%
Issue a workaround • 25%
Other • 25%
Ransomware • 25%
Data theft • 25%
Denial of Service • 25%