Patch your VMware View Planner

Posted on 2021-03-09 by guenni

[German]VMware View Planner has several vulnerabilities, that can be used for Remote Code Execution (RCE). VMware has issued a warning and also security updates for View Planner.

Advertising

VMware`s View Planner may be used as a free tool for benchmarking desktop client and server-side performance in Virtual Desktop Infrastructure environments. Older versions are vulnerable, so attackers can abuse it for remote code execution. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 8.6. VMware has released security updates for View Planner to fix that vulnerabilities. I came across this topic be several mentions on IT sites, like the tweet below from Bleeping Computer.

VMware View Planner Security

Details about the remote code execution vulnerability (CVE-2021-21978) may be read within this VMware advisory.

Advertising
This entry was posted in Security, Update, Virtualization and tagged , , . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: Please note the rules for commenting on the blog (first comments and linked posts end up in moderation, I release them every few hours, I rigorously delete SEO posts/SPAM).